0
|
1 |
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
|
|
2 |
<html>
|
|
3 |
<head>
|
|
4 |
<http-equiv="pragma" content="no-cache">
|
|
5 |
<title>WebAuth Multifactor</title>
|
|
6 |
</head>
|
|
7 |
|
|
8 |
[% IF notdefined %]
|
|
9 |
<!--
|
|
10 |
This is the template for the WebAuth multifactor page. This page is called
|
|
11 |
from login.fcgi script on the weblogin server after a successful
|
|
12 |
authentication that has come back signaling that multifactor authentication
|
|
13 |
is also required. Variables used:
|
|
14 |
|
|
15 |
factor_type : type of multifactor being used (o1, o2, etc)
|
|
16 |
username : the authenticated identity of the user
|
|
17 |
login_cancel : a cancel URL was specified
|
|
18 |
cancel_url : the specified cancel URL
|
|
19 |
multifactor_sentauth : the form was submitted to run the sendauth function
|
|
20 |
error : some error occurred
|
|
21 |
err_multifactor_missing : the form was submitted previously without an OTP
|
|
22 |
err_multifactor_invalid : could not validate a submitted OTP
|
|
23 |
-->
|
|
24 |
[% END %]
|
|
25 |
|
|
26 |
<body onload="document.login.otp.focus();">
|
|
27 |
<h1 align="center">WebAuth Multifactor</h1>
|
|
28 |
[% IF error %]
|
|
29 |
<div class="error" align="center">
|
|
30 |
<p><strong>
|
|
31 |
[% IF err_multifactor_missing %]
|
|
32 |
<!-- Error: no OTP submitted. -->
|
|
33 |
Error: Enter a one-time password.
|
|
34 |
[% END %]
|
|
35 |
|
|
36 |
[% IF err_multifactor_invalid %]
|
|
37 |
<!-- Error: login failed. -->
|
|
38 |
Error: You entered an incorrect one-time password.
|
|
39 |
[% END %]
|
|
40 |
|
|
41 |
</strong></p>
|
|
42 |
<p>Click <a href="/help.html">help</a> for assistance.</p>
|
|
43 |
</div>
|
|
44 |
[% END %]
|
|
45 |
|
|
46 |
<div class="loginbox" align="center">
|
|
47 |
<table border="1" width="70%">
|
|
48 |
<tr>
|
|
49 |
<td><img alt="Login" src="/images/login.png"
|
|
50 |
width="160" height="160"/></td>
|
|
51 |
<td>
|
|
52 |
<div class="loginform">
|
|
53 |
|
|
54 |
[% IF factor_type == "o2" %]
|
|
55 |
<p>Your multifactor setup requires us to send you a password
|
|
56 |
via a configured interface to verify your identity. Please
|
|
57 |
click the following button to send the message to the
|
|
58 |
source you have on file.</p>
|
|
59 |
<form name="multifactor_send"
|
|
60 |
action="[% script_name FILTER html %]"
|
|
61 |
method="post"
|
|
62 |
enctype="application/x-www-form-urlencoded">
|
|
63 |
<input type="hidden" name="rm" value="multifactor_sendauth">
|
|
64 |
<input type="submit" name="Submit" value="Send OTP">
|
|
65 |
<input type="hidden" name="RT"
|
|
66 |
value="[% RT FILTER html %]">
|
|
67 |
<input type="hidden" name="ST"
|
|
68 |
value="[% ST FILTER html %]">
|
|
69 |
<input type="hidden" name="username"
|
|
70 |
value="[% username FILTER html %]">
|
|
71 |
<input type="hidden" name="factor_type"
|
|
72 |
value="[% factor_type FILTER html %]">
|
|
73 |
</form>
|
|
74 |
[% IF multifactor_sentauth %]
|
|
75 |
<p><strong>You have sent an OTP to your configured device.
|
|
76 |
Once you receive it, please enter the code into the
|
|
77 |
following field.</strong></p>
|
|
78 |
[% END %]
|
|
79 |
[% END %]
|
|
80 |
|
|
81 |
<form name="multifactor_login"
|
|
82 |
action="[% script_name FILTER html %]"
|
|
83 |
method="post" autocomplete="OFF"
|
|
84 |
enctype="application/x-www-form-urlencoded">
|
|
85 |
<input type="hidden" name="rm" value="multifactor">
|
|
86 |
<input type="hidden" name="RT"
|
|
87 |
value="[% RT FILTER html %]">
|
|
88 |
<input type="hidden" name="ST"
|
|
89 |
value="[% ST FILTER html %]">
|
|
90 |
<input type="hidden" name="username"
|
|
91 |
value="[% username FILTER html %]">
|
|
92 |
<input type="hidden" name="factor_type"
|
|
93 |
value="[% factor_type FILTER html %]">
|
|
94 |
<table>
|
|
95 |
<tr>
|
|
96 |
<td><strong>One-Time Password (OTP):</strong></td>
|
|
97 |
<td><input name="otp" type="text"
|
|
98 |
value=""
|
|
99 |
size="10"><br/></td>
|
|
100 |
</tr>
|
|
101 |
<tr>
|
|
102 |
<td colspan="2" align="right">
|
|
103 |
<input type="submit" name="Submit" value="Login">
|
|
104 |
</td>
|
|
105 |
</tr>
|
|
106 |
</table>
|
|
107 |
</form>
|
|
108 |
</div>
|
|
109 |
<div class="loginlinks">
|
|
110 |
<a href="/help.html">help</a>
|
|
111 |
[% IF login_cancel %]
|
|
112 |
<!-- The WebAuth Server has a cancel url.-->
|
|
113 |
<a href="[% cancel_url FILTER html %]">cancel</a>
|
|
114 |
[% END %]
|
|
115 |
</div>
|
|
116 |
</td>
|
|
117 |
</tr>
|
|
118 |
</table>
|
|
119 |
</div>
|
|
120 |
|
|
121 |
<div class="trailer">
|
|
122 |
<h2>Caution:</h2>
|
|
123 |
|
|
124 |
<p>Never enter your WebAuth one-time password on a web page
|
|
125 |
unless the page is a page directly served by the WebAuth login
|
|
126 |
server.</p>
|
|
127 |
</div>
|
|
128 |
</body>
|
|
129 |
</html>
|