Code Monkey home page Code Monkey logo

telnyx-2fa's Introduction

Deploy

Telnyx 2FA

An example heroku app utilizing Telnyx's Call Control and Messaging APIs to perform two-factor authentication via voice or sms.

Prerequisites

Deployment

This application may be deployed to Heroku by following this link, or clicking the button above.

Heroku will prompt for an app name (example-2fa is used throughout this document) and values for the following environment variables:

  • TELNYX_API_KEY: Telnyx APIv2 Key
  • TELNYX_API_TOKEN: Telnyx APIv1 Token
  • TELNYX_CONNECTION_ID: Telnyx connection ID (from Connection Details)
  • VOICE_ANI: Number to display for voice calls (in e164 format -- e.g., +15055551212). Should be registered with Telnyx.
  • SMS_ANI: Number to display for SMS messages (in e164 format -- e.g., +150555512121). Must be registered & configured with Telnyx.
  • BASE_URL: Base URL of app, inclluding trailing /. E.g., https://example-2fa.herokuapp.com/.
  • SMS_TOKEN_DIGITS: Number of digits for SMS tokens. Default: 6
  • VOICE_TOKEN_DIGITS: Number of digits for voice tokens. Default: 2
  • VOICE_PROMPT_DE_DE: Example of a foreign language (German) prompt. Additional environment variables can be added to the app (after initial deployment) to support additional languages.
  • VOICE_SUCCESS_DE_DE: Example of a foreign language (German) success message. Additional environment variables can be added to the app (after initial deployment) to support additional languages.
  • VOICE_FAILURE_DE_DE: Example of a foreign language (German) success message. Additional environment variables can be added to the app (after initial deployment) to support additional languages.
  • SMS_MESSAGE_DE_DE: SMS notification message in German.

The Telnyx Connection must be updated with the correct V1 callback URL, e.g.: https://example-2fa.herokuapp.com/event.

Using the API

Once the app is deployed, it will be available at example-2fa.herokuapp.com (or a custom domain if configured).

You will need the auto-generated API-Key, which can be obtained by visiting https://dashboard.heroku.com/apps/example-2fa/settings and selecting "Reveal Config Vars".

Note that phone numbers are transmitted in e164 format with a plus (for which the url encoded escape sequence is %2B).

To authenticate a number, first obtain the voice & sms links:

API_KEY={auto-generated api key}
curl -H "X-API-Key: $API_KEY" "https://example-2fa.herokuapp.com/2fa?to=%2B15055551212"

Example Response:

{
  "sms": {
    "url": "https://example-2fa.herokuapp.com/2fa/sms?to=%2B15055551212&token=123456&language=en-US",
    "token": "123456"
  },
  "voice": {
    "url": "https://example-2fa.herokuapp.com/2fa/voice?to=%2B15055551212&token=12&language=en-US",
    "token": "12"
  }
}

The response will include a url for voice authentication. If the number can receive SMS messages, a url for sms based authentication will be returned as well.

To authenticate via voice, first display the token to the end user with instructions to enter it when prompted by the phone call, then access the voice URL:

curl -H "X-API-Key: $API_KEY" "https://example-2fa.herokuapp.com/2fa/voice?to=%2B15055551212&token=12&language=en-US"

Example Responses:

Successful Authentication:

{"status": "waiting", "uuid": "9959b1d8-ec4a-41e1-a459-0b5fa9892824"}
...
{"status": "success", "uuid": "9959b1d8-ec4a-41e1-a459-0b5fa9892824"}

Failed Authentication:

{"status": "waiting", "uuid": "e964dbd9-c9ba-42f3-9ee6-0d394501010d"}
...
{"status": "failure", "uuid": "e964dbd9-c9ba-42f3-9ee6-0d394501010d"}

Server Failure:

{"status": "waiting", "uuid": "e964dbd9-c9ba-42f3-9ee6-0d394501010d"}
...
{"status": "error", "details": [...], "uuid": "e964dbd9-c9ba-42f3-9ee6-0d394501010d"}

Note that multiple "waiting" status lines may be received before receiving "success" or "failure".

To authenticate via sms, access the SMS URL, and display an input box to the end user:

curl -H "X-API-Key: $API_KEY" "https://example-2fa.herokuapp.com/2fa/sms?to=%2B15055551212&token=123456&language=en-US"

Example Response:

{"status": "ok"}

Note that status "ok" only means that the message was sent, it does not indicate succesful authentication of the token. Authentication of the token is performed by comparing the token returned in the initial call to the /2fa endpoint to the token entered by the user.

telnyx-2fa's People

Contributors

mgwilliams avatar

Watchers

avatar

Forkers

zeeshan138063

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.