Tcl
Tcl
Duo Auth API - Async Auth
See more Duo Auth MFA Examples
If you enable async, then your application will be able to retrieve real-time status updates from the authentication process, rather than receiving no information until the process is complete.Chilkat Tcl Downloads
load ./chilkat.dll
set success 0
# This example assumes the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
set integrationKey "DIMS3V5QDVG9J9ABRXC4"
set secretKey "HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab"
set http [new_CkHttp]
CkHttp_put_Accept $http "application/json"
# Use your own hostname here:
set url "https://api-a03782e1.duosecurity.com/auth/v2/auth"
# This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
# generate and send the HMAC signature for the requires based on the integration key and secret key.
CkHttp_put_Login $http $integrationKey
CkHttp_put_Password $http $secretKey
set req [new_CkHttpRequest]
CkHttpRequest_AddParam $req "username" "matt"
CkHttpRequest_AddParam $req "factor" "push"
# The device ID can be obtained from the preauth response. See Duo Preauth Example
CkHttpRequest_AddParam $req "device" "DP6GYVTQ5NK82BMR851F"
# Add the async param to get an immediate response, then periodically check for updates to find out when the MFA authentication completes for fails.
CkHttpRequest_AddParam $req "async" "1"
CkHttpRequest_put_HttpVerb $req "POST"
CkHttpRequest_put_ContentType $req "application/x-www-form-urlencoded"
set resp [new_CkHttpResponse]
set success [CkHttp_HttpReq $http $url $req $resp]
if {$success == 0} then {
puts [CkHttp_lastErrorText $http]
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkHttpResponse $resp
exit
}
puts "status code = [CkHttpResponse_get_StatusCode $resp]"
set json [new_CkJsonObject]
set success [CkJsonObject_Load $json [CkHttpResponse_bodyStr $resp]]
CkJsonObject_put_EmitCompact $json 0
puts [CkJsonObject_emit $json]
if {[CkHttpResponse_get_StatusCode $resp] != 200} then {
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkHttpResponse $resp
delete_CkJsonObject $json
exit
}
# Sample successful output:
# status code = 200
# {
# "stat": "OK",
# "response": {
# "txid": "45f7c92b-f45f-4862-8545-e0f58e78075a"
# }
# }
set txid [CkJsonObject_stringOf $json "response.txid"]
# Use your own hostname here:
set sbUrl [new_CkStringBuilder]
CkStringBuilder_Append $sbUrl "https://api-a03782e1.duosecurity.com/auth/v2/auth_status?txid="
CkStringBuilder_Append $sbUrl $txid
set url [CkStringBuilder_getAsString $sbUrl]
puts "Auth status URL: $url"
set sbResult [new_CkStringBuilder]
# Wait for a response...
set i 0
set maxWaitIterations 100
while {$i < $maxWaitIterations} {
# Wait 3 seconds.
CkHttp_SleepMs $http 3000
puts "Polling..."
set success [CkHttp_HttpNoBody $http "GET" $url $resp]
if {$success == 0} then {
puts [CkHttp_lastErrorText $http]
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkHttpResponse $resp
delete_CkJsonObject $json
delete_CkStringBuilder $sbUrl
delete_CkStringBuilder $sbResult
exit
}
if {[CkHttpResponse_get_StatusCode $resp] != 200} then {
puts "error status code = [CkHttpResponse_get_StatusCode $resp]"
puts [CkHttpResponse_bodyStr $resp]
puts "Failed."
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkHttpResponse $resp
delete_CkJsonObject $json
delete_CkStringBuilder $sbUrl
delete_CkStringBuilder $sbResult
exit
}
# Sample response:
# {
# "stat": "OK",
# "response": {
# "result": "waiting",
# "status": "pushed",
# "status_msg": "Pushed a login request to your phone..."
# }
# }
CkJsonObject_Load $json [CkHttpResponse_bodyStr $resp]
# The responseResult can be "allow", "deny", or "waiting"
CkStringBuilder_Clear $sbResult
CkJsonObject_StringOfSb $json "response.result" $sbResult
set responseStatus [CkJsonObject_stringOf $json "response.status"]
set responseStatus_msg [CkJsonObject_stringOf $json "response.status_msg"]
puts [CkStringBuilder_getAsString $sbResult]
puts "$responseStatus"
puts "$responseStatus_msg"
puts
if {[CkStringBuilder_ContentsEqual $sbResult "waiting" 1] == 1} then {
set i [expr $i + 1]
} else {
# Force loop exit..
set i $maxWaitIterations
}
}
puts "Finished."
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkHttpResponse $resp
delete_CkJsonObject $json
delete_CkStringBuilder $sbUrl
delete_CkStringBuilder $sbResult