Java TwoFactorSigningService Examples

Programming Language: Java

Namespace/Package Name: co.mitro.twofactor

Examples at hotexamples.com: 3

Java TwoFactorSigningService - 3 examples found. These are the top rated real world Java examples of co.mitro.twofactor.TwoFactorSigningService extracted from open source projects. You can rate examples to help us improve the quality of examples.

Frequently Used Methods

Show Hide

checkInitialized(1)

signToken(1)

verifySignatureAndTimestamp(1)

Example #1

Show file

File: CheckTwoFactorRequired.java Project: GonecraZy/mitro

 // this either returns an object with either an null URL or a URL that goes to
 // the TwoFactorAuth website to log in.
 @Override
 protected MitroRPC processCommand(MitroRequestContext context)
     throws IOException, SQLException, MitroServletException {
   RPC.CheckTwoFactorRequiredRequest in =
       gson.fromJson(context.jsonRequest, RPC.CheckTwoFactorRequiredRequest.class);
   String url = null;
   // url stays null if 2fa isn't enabled. else, changes to 2fa login page
   if (context.requestor.isTwoFactorAuthEnabled()) {
     String token =
         GetMyPrivateKey.makeLoginTokenString(context.requestor, in.extensionId, in.deviceId);
     String signedToken;
     try {
       signedToken = TwoFactorSigningService.signToken(token);
     } catch (KeyczarException e) {
       throw new MitroServletException(e);
     }
     url =
         context.requestServerUrl
             + "/mitro-core/TwoFactorAuth?token="
             + URLEncoder.encode(token, "UTF-8")
             + "&signature="
             + URLEncoder.encode(signedToken, "UTF-8");
   }
   RPC.CheckTwoFactorRequiredResponse out = new RPC.CheckTwoFactorRequiredResponse();
   out.twoFactorUrl = url;
   return out;
 }

Example #2

Show file

File: CheckTwoFactorRequired.java Project: GonecraZy/mitro

  // this will throw an exception if the person has 2fa enabled but the
  // token/signature isn't provided or is incorrect or old
  public static boolean checkTwoFactorSecret(
      MitroRequestContext context, RPC.TwoFactorAuthRequest in) throws DoTwoFactorAuthException {
    if (context.requestor.isTwoFactorAuthEnabled()) {
      boolean tokenExists = !Strings.isNullOrEmpty(in.tfaToken);
      boolean signatureExists = !Strings.isNullOrEmpty(in.tfaSignature);
      if (!tokenExists || !signatureExists) {
        throw new DoTwoFactorAuthException("");
      }

      RPC.LoginToken tokenInGson = gson.fromJson(in.tfaToken, RPC.LoginToken.class);
      boolean twoFactorVerified = tokenInGson.twoFactorAuthVerified;
      if (!twoFactorVerified) {
        throw new DoTwoFactorAuthException("");
      } else if (!TwoFactorSigningService.verifySignatureAndTimestamp(
          in.tfaToken, in.tfaSignature, tokenInGson.timestampMs)) {
        throw new DoTwoFactorAuthException("");
      } else {
        return true;
      }
    }
    return false;
  }

Example #3

Show file

File: CheckTwoFactorRequired.java Project: GonecraZy/mitro

 public CheckTwoFactorRequired(ManagerFactory mf, KeyFactory keyFactory) {
   super(mf, keyFactory);
   // Crash on startup if secrets aren't loaded
   TwoFactorSigningService.checkInitialized();
 }