Mercurial Mercurial > repos > sso-in-a-box / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
packages/ssoinabox-webui/root/usr/local/share/weblogin/ssoinabox/templates/multifactor.tmpl
changeset 0 3906ca745819 
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/packages/ssoinabox-webui/root/usr/local/share/weblogin/ssoinabox/templates/multifactor.tmpl	Tue Jan 08 23:13:29 2013 -0500
@@ -0,0 +1,129 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<html>
+  <head>
+    <http-equiv="pragma" content="no-cache">
+    <title>WebAuth Multifactor</title>
+  </head>
+
+  [% IF notdefined %]
+<!--
+This is the template for the WebAuth multifactor page.  This page is called
+from login.fcgi script on the weblogin server after a successful
+authentication that has come back signaling that multifactor authentication
+is also required.  Variables used:
+
+factor_type             : type of multifactor being used (o1, o2, etc)
+username                : the authenticated identity of the user
+login_cancel            : a cancel URL was specified
+cancel_url              : the specified cancel URL
+multifactor_sentauth    : the form was submitted to run the sendauth function
+error                   : some error occurred
+err_multifactor_missing : the form was submitted previously without an OTP
+err_multifactor_invalid : could not validate a submitted OTP
+-->
+  [% END %]
+
+  <body onload="document.login.otp.focus();">
+    <h1 align="center">WebAuth Multifactor</h1>
+    [% IF error %]
+      <div class="error" align="center">
+        <p><strong>
+          [% IF err_multifactor_missing %]
+            <!-- Error: no OTP submitted. -->
+            Error: Enter a one-time password.
+          [% END %]
+
+          [% IF err_multifactor_invalid %]
+            <!-- Error: login failed. -->
+            Error: You entered an incorrect one-time password.
+          [% END %]
+
+        </strong></p>
+        <p>Click <a href="/help.html">help</a> for assistance.</p>
+      </div>
+    [% END %]
+
+    <div class="loginbox" align="center">
+      <table border="1" width="70%">
+        <tr>
+          <td><img alt="Login" src="/images/login.png"
+                   width="160" height="160"/></td>
+          <td>
+            <div class="loginform">
+
+              [% IF factor_type == "o2" %]
+                <p>Your multifactor setup requires us to send you a password
+                   via a configured interface to verify your identity. Please
+                   click the following button to send the message to the
+                   source you have on file.</p>
+                <form name="multifactor_send"
+                      action="[% script_name FILTER html %]"
+                      method="post"
+                      enctype="application/x-www-form-urlencoded">
+                  <input type="hidden" name="rm" value="multifactor_sendauth">
+                  <input type="submit" name="Submit" value="Send OTP">
+                  <input type="hidden" name="RT"
+                         value="[% RT FILTER html %]">
+                  <input type="hidden" name="ST"
+                         value="[% ST FILTER html %]">
+                  <input type="hidden" name="username"
+                         value="[% username FILTER html %]">
+                  <input type="hidden" name="factor_type"
+                         value="[% factor_type FILTER html %]">
+                </form>
+                [% IF multifactor_sentauth %]
+                  <p><strong>You have sent an OTP to your configured device.
+                     Once you receive it, please enter the code into the
+                     following field.</strong></p>
+                [% END %]
+              [% END %]
+
+              <form name="multifactor_login"
+                    action="[% script_name FILTER html %]"
+                    method="post" autocomplete="OFF"
+                    enctype="application/x-www-form-urlencoded">
+                <input type="hidden" name="rm" value="multifactor">
+                <input type="hidden" name="RT"
+                       value="[% RT FILTER html %]">
+                <input type="hidden" name="ST"
+                       value="[% ST FILTER html %]">
+                <input type="hidden" name="username"
+                       value="[% username FILTER html %]">
+                <input type="hidden" name="factor_type"
+                       value="[% factor_type FILTER html %]">
+                <table>
+                  <tr>
+                    <td><strong>One-Time Password (OTP):</strong></td>
+                    <td><input name="otp" type="text"
+                               value=""
+                               size="10"><br/></td>
+                  </tr>
+                  <tr>
+                    <td colspan="2" align="right">
+                      <input type="submit" name="Submit" value="Login">
+                    </td>
+                  </tr>
+                </table>
+              </form>
+            </div>
+            <div class="loginlinks">
+              <a href="/help.html">help</a>
+              [% IF login_cancel %]
+                <!-- The WebAuth Server has a cancel url.-->
+                <a href="[% cancel_url FILTER html %]">cancel</a>
+              [% END %]
+            </div>
+          </td>
+        </tr>
+      </table>
+    </div>
+
+    <div class="trailer">
+      <h2>Caution:</h2>
+
+      <p>Never enter your WebAuth one-time password on a web page
+      unless the page is a page directly served by the WebAuth login
+      server.</p>
+    </div>
+  </body>
+</html>
SSO-in-a-Box