Objective-C
Objective-C
Duo Auth API - Async Auth
See more Duo Auth MFA Examples
If you enable async, then your application will be able to retrieve real-time status updates from the authentication process, rather than receiving no information until the process is complete.Chilkat Objective-C Downloads
#import <NSString.h>
#import <CkoHttp.h>
#import <CkoHttpRequest.h>
#import <CkoHttpResponse.h>
#import <CkoJsonObject.h>
#import <CkoStringBuilder.h>
BOOL success = NO;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
NSString *integrationKey = @"DIMS3V5QDVG9J9ABRXC4";
NSString *secretKey = @"HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab";
CkoHttp *http = [[CkoHttp alloc] init];
http.Accept = @"application/json";
// Use your own hostname here:
NSString *url = @"https://api-a03782e1.duosecurity.com/auth/v2/auth";
// This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
// generate and send the HMAC signature for the requires based on the integration key and secret key.
http.Login = integrationKey;
http.Password = secretKey;
CkoHttpRequest *req = [[CkoHttpRequest alloc] init];
[req AddParam: @"username" value: @"matt"];
[req AddParam: @"factor" value: @"push"];
// The device ID can be obtained from the preauth response. See Duo Preauth Example
[req AddParam: @"device" value: @"DP6GYVTQ5NK82BMR851F"];
// Add the async param to get an immediate response, then periodically check for updates to find out when the MFA authentication completes for fails.
[req AddParam: @"async" value: @"1"];
req.HttpVerb = @"POST";
req.ContentType = @"application/x-www-form-urlencoded";
CkoHttpResponse *resp = [[CkoHttpResponse alloc] init];
success = [http HttpReq: url request: req response: resp];
if (success == NO) {
NSLog(@"%@",http.LastErrorText);
return;
}
NSLog(@"%@%d",@"status code = ",[resp.StatusCode intValue]);
CkoJsonObject *json = [[CkoJsonObject alloc] init];
success = [json Load: resp.BodyStr];
json.EmitCompact = NO;
NSLog(@"%@",[json Emit]);
if ([resp.StatusCode intValue] != 200) {
return;
}
// Sample successful output:
// status code = 200
// {
// "stat": "OK",
// "response": {
// "txid": "45f7c92b-f45f-4862-8545-e0f58e78075a"
// }
// }
NSString *txid = [json StringOf: @"response.txid"];
// Use your own hostname here:
CkoStringBuilder *sbUrl = [[CkoStringBuilder alloc] init];
[sbUrl Append: @"https://api-a03782e1.duosecurity.com/auth/v2/auth_status?txid="];
[sbUrl Append: txid];
NSString *url = [sbUrl GetAsString];
NSLog(@"%@%@",@"Auth status URL: ",url);
CkoStringBuilder *sbResult = [[CkoStringBuilder alloc] init];
NSString *responseStatus = 0;
NSString *responseStatus_msg = 0;
// Wait for a response...
int i = 0;
int maxWaitIterations = 100;
while (i < maxWaitIterations) {
// Wait 3 seconds.
[http SleepMs: [NSNumber numberWithInt: 3000]];
NSLog(@"%@",@"Polling...");
success = [http HttpNoBody: @"GET" url: url response: resp];
if (success == NO) {
NSLog(@"%@",http.LastErrorText);
return;
}
if ([resp.StatusCode intValue] != 200) {
NSLog(@"%@%d",@"error status code = ",[resp.StatusCode intValue]);
NSLog(@"%@",resp.BodyStr);
NSLog(@"%@",@"Failed.");
return;
}
// Sample response:
// {
// "stat": "OK",
// "response": {
// "result": "waiting",
// "status": "pushed",
// "status_msg": "Pushed a login request to your phone..."
// }
// }
[json Load: resp.BodyStr];
// The responseResult can be "allow", "deny", or "waiting"
[sbResult Clear];
[json StringOfSb: @"response.result" sb: sbResult];
responseStatus = [json StringOf: @"response.status"];
responseStatus_msg = [json StringOf: @"response.status_msg"];
NSLog(@"%@",[sbResult GetAsString]);
NSLog(@"%@",responseStatus);
NSLog(@"%@",responseStatus_msg);
NSLog(@"%@",@"");
if ([sbResult ContentsEqual: @"waiting" caseSensitive: YES] == YES) {
i = i + 1;
}
else {
// Force loop exit..
i = maxWaitIterations;
}
}
NSLog(@"%@",@"Finished.");