auth0-mfa-flow

1.0.4 • Public • Published

auth0-mfa-flow

Used in conjunction with https://github.com/auth0/auth0.js
If you have multi-factor authentication enabled auth0-js will lead to a dead-end.
Use this library to continue the auhtentication process.
This library only favours mfa via sms, voice or other otp delivery at this point.

Usage

import auth0 from 'auth0-js';
import Auth0MFAFlow, {mfaDefaultOptions} from 'auth0-mfa-flow';

const clientId = 'YOUR_AUTH0_APPLICATION_CLIENT_ID';
const domain = 'YOUR_AUTH0_APPLICATION_DOMAIN';

const auth = new auth0.Authentication({
  doamin,
  clientID: clientId,
  scope: 'openid profile email',
  responseType: 'code'
});

// mfaDefaultOptions
// Auth0MFAFLow default config is for oob type with just sms channel
// see https://auth0.com/docs/api/authentication#multi-factor-authentication 
// for more details and otp type
const options = {
	challengeType: 'oob', // or 'otp'
	oobChannels: ['sms'],
	authenticatorTypes: ['oob'], // or ['otp']
	grantType: 'http://auth0.com/oauth/grant-type/mfa-oob'
};

const mfaAuth = new Auth0MFAFLow(clientId, domain); // add options as a 3rd parameter

const startMultiFactorAuth = (mfaToken) => {
	// SHOW MOBILE NUMBER INPUT FIELD
	const mobileNumber = 'GET_THE_USER_MOBILE_NUMBER'; // OPTIONAL for oob ( Required if sms or voice )
	// get the mobile number from the user if required
	const {error} = mfaAuth.start(mfaToken, mobileNumber);
	if (!error) {
		// SHOW OTP INPUT FIELD
		// to resend the OTP call mfaAuth.challenge()
		// once user enters OTP and submits form, call onOtpSubmit
	} else {
		// SHOW ERROR MESSAGE
	}
};

const onOtpSubmit = async (otp) => {
	const {data} = await mfaAuth.complete(otp);
	if (data) {
		// data contains your access_token
		auth.userInfo(data.access_token, async (error, profile) => {
		
		});
	} else {
		// SHOW ERROR MESSAGE
	}
};

auth.login(
	{
		realm: 'Username-Password-Authentication',
		username: 'AUTH0_USER_USERNAME_FROM_USER_INPUT',
		password: 'AUTH0_USER_PASSWORD_FROM_USER_INPUT'
	},
	async (err, authResult) => {
		if (err || !authResult) {
			if (err) {
				const {code, original} = err;
				if (code === 'mfa_required') {
					// with multi-factor enabled
					const {
						response: {
							body: {mfa_token}
						}
					} = original;
					startMultiFactorAuth(mfa_token);
				}
			}
		} else {
			// without multi-factor enabled
			auth.userInfo(authResult.accessToken, async (error, profile) => {
		
			});
		}
	}
);

Package Sidebar

Install

npm i auth0-mfa-flow

Weekly Downloads

61

Version

1.0.4

License

ISC

Unpacked Size

7.68 kB

Total Files

3

Last publish

Collaborators

  • spectreintegrated
  • cjohannisen