-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.js
121 lines (106 loc) · 3.51 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
const axios = require('axios');
const prompts = require('prompts');
require('dotenv').config()
let tryAuthentication = () => {
var data = JSON.stringify({
"grant_type": "http://auth0.com/oauth/grant-type/password-realm",
"client_id": `${process.env.CLIENT_ID}`,
"audience": `https://${process.env.AUTH0_DOMAIN}/mfa/`,
"username": `${process.env.USER_EMAIL}`,
"password": `${process.env.USER_PWD}`,
"realm": `${process.env.REALM}`,
"scope": "enroll read:authenticators remove:authenticators"
});
var config = {
method: 'post',
url: `https://${process.env.AUTH0_DOMAIN}/oauth/token`,
headers: {
'Content-Type': 'application/json',
},
data: data
};
return axios(config)
.then(response => response.data.access_token)
.catch(error => (error.response.data.error === 'mfa_required') ?
error.response.data.mfa_token : "");
}
let startFactorEnrollment = (mfaToken) => {
var data = JSON.stringify({
"client_id": `${process.env.CLIENT_ID}`,
"authenticator_types": ["oob"],
"oob_channels": ["sms"],
"phone_number": `${process.env.USER_MOBILE}`
});
var config = {
method: 'post',
url: `https://${process.env.AUTH0_DOMAIN}/mfa/associate`,
headers: {
'Content-Type': 'application/json',
'Authorization': `Bearer ${mfaToken}`,
},
data: data
};
return axios(config)
.then(response => response.data.oob_code)
.catch(error => (error.response.data.error === 'access_denied') ?
'already_enrolled' : "");
}
let promptForBindingCode = async () => {
return prompts({
type: 'text',
name: 'bindingCode',
message: 'Please enter your SMS OTP'
}).then(response => response.bindingCode);
}
let respondToMfaChallenge = (mfaToken, oobCode, bindingCode) => {
var data = {
"grant_type": "http://auth0.com/oauth/grant-type/mfa-oob",
"client_id": `${process.env.CLIENT_ID}`,
"mfa_token": `${mfaToken}`,
"oob_code": `${oobCode}`,
"binding_code": `${bindingCode}`
};
var config = {
method: 'post',
url: `https://${process.env.AUTH0_DOMAIN}/oauth/token`,
headers: {
'Content-Type': 'application/json',
},
data: data
};
return axios(config)
.then(response => response.data)
.catch(error => console.log(error));
}
let startMfaChallenge = (mfaToken) => {
var data = {
"client_id": `${process.env.CLIENT_ID}`,
"mfa_token": `${mfaToken}`,
"challenge_type": "oob"
};
var config = {
method: 'post',
url: `https://${process.env.AUTH0_DOMAIN}/mfa/challenge`,
headers: {
'Content-Type': 'application/json',
},
data: data
};
return axios(config)
.then(response => response.data.oob_code)
.catch(error => console.log(error));
}
let main = async () => {
try {
let mfaRequiredMfaToken = await tryAuthentication();
let oobCode = await startFactorEnrollment(mfaRequiredMfaToken);
if (oobCode === 'already_enrolled')
oobCode = await startMfaChallenge(mfaRequiredMfaToken);
let bindingCode = await promptForBindingCode();
let response = await respondToMfaChallenge(mfaRequiredMfaToken, oobCode, bindingCode);
console.info(response);
} catch (error) {
console.error(error);
}
}
main();