This plugin can be used to append a second factor authentication device like SMS or OTP. It uses an external web service to submit and validate the second factor.
All parameters are set in "General Parameters » Portal Parameters » Second Factors » REST 2nd Factor".
Arguments are a list of key/value. Key is the name of JSON entry, value is attribute or macro name.
REST web services have just to reply with a "result" key in a JSON file. Auth/UserDB can add an "info" array. It will be stored in session data (without reading "Exported variables").
URL | Query | Response |
---|---|---|
Init URL | JSON file: {"user":$user,...} | JSON file: {"result":true/false} |
Verify URL | JSON file: {"user":$user,"code":"$code",...} | JSON file: {"result":true/false} |