|
1 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> |
|
2 <html> |
|
3 <head> |
|
4 <http-equiv="pragma" content="no-cache"> |
|
5 <title>WebAuth Multifactor</title> |
|
6 </head> |
|
7 |
|
8 [% IF notdefined %] |
|
9 <!-- |
|
10 This is the template for the WebAuth multifactor page. This page is called |
|
11 from login.fcgi script on the weblogin server after a successful |
|
12 authentication that has come back signaling that multifactor authentication |
|
13 is also required. Variables used: |
|
14 |
|
15 factor_type : type of multifactor being used (o1, o2, etc) |
|
16 username : the authenticated identity of the user |
|
17 login_cancel : a cancel URL was specified |
|
18 cancel_url : the specified cancel URL |
|
19 multifactor_sentauth : the form was submitted to run the sendauth function |
|
20 error : some error occurred |
|
21 err_multifactor_missing : the form was submitted previously without an OTP |
|
22 err_multifactor_invalid : could not validate a submitted OTP |
|
23 --> |
|
24 [% END %] |
|
25 |
|
26 <body onload="document.login.otp.focus();"> |
|
27 <h1 align="center">WebAuth Multifactor</h1> |
|
28 [% IF error %] |
|
29 <div class="error" align="center"> |
|
30 <p><strong> |
|
31 [% IF err_multifactor_missing %] |
|
32 <!-- Error: no OTP submitted. --> |
|
33 Error: Enter a one-time password. |
|
34 [% END %] |
|
35 |
|
36 [% IF err_multifactor_invalid %] |
|
37 <!-- Error: login failed. --> |
|
38 Error: You entered an incorrect one-time password. |
|
39 [% END %] |
|
40 |
|
41 </strong></p> |
|
42 <p>Click <a href="/help.html">help</a> for assistance.</p> |
|
43 </div> |
|
44 [% END %] |
|
45 |
|
46 <div class="loginbox" align="center"> |
|
47 <table border="1" width="70%"> |
|
48 <tr> |
|
49 <td><img alt="Login" src="/images/login.png" |
|
50 width="160" height="160"/></td> |
|
51 <td> |
|
52 <div class="loginform"> |
|
53 |
|
54 [% IF factor_type == "o2" %] |
|
55 <p>Your multifactor setup requires us to send you a password |
|
56 via a configured interface to verify your identity. Please |
|
57 click the following button to send the message to the |
|
58 source you have on file.</p> |
|
59 <form name="multifactor_send" |
|
60 action="[% script_name FILTER html %]" |
|
61 method="post" |
|
62 enctype="application/x-www-form-urlencoded"> |
|
63 <input type="hidden" name="rm" value="multifactor_sendauth"> |
|
64 <input type="submit" name="Submit" value="Send OTP"> |
|
65 <input type="hidden" name="RT" |
|
66 value="[% RT FILTER html %]"> |
|
67 <input type="hidden" name="ST" |
|
68 value="[% ST FILTER html %]"> |
|
69 <input type="hidden" name="username" |
|
70 value="[% username FILTER html %]"> |
|
71 <input type="hidden" name="factor_type" |
|
72 value="[% factor_type FILTER html %]"> |
|
73 </form> |
|
74 [% IF multifactor_sentauth %] |
|
75 <p><strong>You have sent an OTP to your configured device. |
|
76 Once you receive it, please enter the code into the |
|
77 following field.</strong></p> |
|
78 [% END %] |
|
79 [% END %] |
|
80 |
|
81 <form name="multifactor_login" |
|
82 action="[% script_name FILTER html %]" |
|
83 method="post" autocomplete="OFF" |
|
84 enctype="application/x-www-form-urlencoded"> |
|
85 <input type="hidden" name="rm" value="multifactor"> |
|
86 <input type="hidden" name="RT" |
|
87 value="[% RT FILTER html %]"> |
|
88 <input type="hidden" name="ST" |
|
89 value="[% ST FILTER html %]"> |
|
90 <input type="hidden" name="username" |
|
91 value="[% username FILTER html %]"> |
|
92 <input type="hidden" name="factor_type" |
|
93 value="[% factor_type FILTER html %]"> |
|
94 <table> |
|
95 <tr> |
|
96 <td><strong>One-Time Password (OTP):</strong></td> |
|
97 <td><input name="otp" type="text" |
|
98 value="" |
|
99 size="10"><br/></td> |
|
100 </tr> |
|
101 <tr> |
|
102 <td colspan="2" align="right"> |
|
103 <input type="submit" name="Submit" value="Login"> |
|
104 </td> |
|
105 </tr> |
|
106 </table> |
|
107 </form> |
|
108 </div> |
|
109 <div class="loginlinks"> |
|
110 <a href="/help.html">help</a> |
|
111 [% IF login_cancel %] |
|
112 <!-- The WebAuth Server has a cancel url.--> |
|
113 <a href="[% cancel_url FILTER html %]">cancel</a> |
|
114 [% END %] |
|
115 </div> |
|
116 </td> |
|
117 </tr> |
|
118 </table> |
|
119 </div> |
|
120 |
|
121 <div class="trailer"> |
|
122 <h2>Caution:</h2> |
|
123 |
|
124 <p>Never enter your WebAuth one-time password on a web page |
|
125 unless the page is a page directly served by the WebAuth login |
|
126 server.</p> |
|
127 </div> |
|
128 </body> |
|
129 </html> |