REST Second Factor

This plugin can be used to add a second factor for authentication (SMS, OTP,…). It uses external web service to send and validate the second factor.

Configuration

All parameters are configured in “General Parameters » Portal Parameters » Second Factors » REST 2nd Factor”.

Activation
Init URL (optional): REST URL to initialize dialog (send OTP). Leave it blank if your API doesn't need any initialization
Init arguments: list of arguments to send (see below)
Verify URL (required): REST URL to verify code
Verify arguments: list of arguments to send (see below)
Authentication Level: if you want to overwrite the value sent by your authentication module, you can define here the new authentication level. Example: 5
Logo (optional): logo file (in static/<skin> directory)

Arguments

Arguments are a list of key/value. Key is the name of JSON entry, value is attribute or macro name.

For Verify URL, you should send $code at least

REST Dialog

REST web services just have to respond with a “result” key in a JSON file. Auth/UserDB can add a “info” array to will be copied is session data (without reading “Exported variables”).

URL	Query	Response
Init URL	JSON file: `{“user”:$user,…}`	JSON file: `{“result”:true/false}`
Verify URL	JSON file: `{“user”:$user,“code”:“$code”,…}`	JSON file: `{“result”:true/false}`

Table of Contents

REST Second Factor

Configuration

Arguments

REST Dialog