UNPKG

@duosecurity/duo_universal

Version:

Node.js implementation of the Duo Universal SDK.

github.com/duosecurity/duo_universal_nodejs

duosecurity/duo_universal_nodejs

111 lines (70 loc) 3.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
# Duo Universal Node.js library [![Build Status](https://github.com/duosecurity/duo_universal_nodejs/workflows/Node.js%20CI/badge.svg)](https://github.com/duosecurity/duo_universal_nodejs/actions/workflows/nodejs-ci.yml) [![npm version](https://badge.fury.io/js/@duosecurity%2Fduo_universal.svg)](https://badge.fury.io/js/@duosecurity%2Fduo_universal) [![GitHub license](https://img.shields.io/github/license/duosecurity/duo_universal_nodejs)](https://github.com/duosecurity/duo_universal_nodejs/blob/main/LICENSE) This library allows a web developer to quickly add Duo's interactive, self-service, two-factor authentication to any Node.js web login form. See our developer documentation at https://www.duosecurity.com/docs/duoweb for guidance on integrating Duo 2FA into your web application. Duo especially thanks [Lukas Hroch](https://github.com/lukashroch) for creating the initial version of this library. ## Getting Started This library requires Node.js v14 or later. To use this client in your existing developing environment, install it from NPM ```sh npm install @duosecurity/duo_universal ``` Once it's installed, see our developer documentation at https://duo.com/docs/duoweb and the `example` folder in this repo for guidance on integrating Duo 2FA into your web application. ### TLS 1.2 and 1.3 Support Duo_universal_nodejs uses the Node tls library and OpenSSL for TLS operations. All versions of Node receiving security support (14 and higher) use OpenSSL 1.1.1 which supports TLS 1.2 and 1.3. ## Usage Details ### 1. Import client ```ts import { Client } from '@duosecurity/duo_universal'; ``` ### 2. Create client Creates new client instance. Provide your Duo Security application credentials and host URL. Include redirect URL to make a way back to your application. ```ts const client = new Client({ clientId: 'yourDuoApplicationClientId', clientSecret: 'yourDuoApplicationSecret', apiHost: 'api-12345678.duosecurity.com', redirectUrl: 'http://localhost:3000/redirect', }); ``` ### 3. Heath check Determines if Duo’s servers are accessible and available to accept the 2FA request. ```ts const status = await client.healthCheck(); ``` ### 4. Generate state Generates new state (random string) to link the with authentication attempt. Store appropriately, so you can retrieve/compare on callback. ```ts const state = client.generateState(); ``` ### 5. Create authentication URL Creates authentication URL to redirect user to Duo Security Universal prompt. Provide user identifier and state generated in previous step. ```ts const authUrl = client.createAuthUrl('username', 'state'); ``` ### 6. Token & code exchange Exchanges received `duo code` from callback redirect for token result. ```ts const token = await client.exchangeAuthorizationCodeFor2FAResult('duoCode', 'username'); ``` ## Example A complete implementation example can be found in [`example/`](/example). It's a simple express-based application. Please follow the [`example/README.md`](/example/README.md) to spin it up. ## Contribute Fork the repository Install dependencies ```sh npm install ``` Make your proposed changes. Add tests if applicable, lint the code. Submit a pull request. ## Tests ```sh npm run test ``` ## Lint ```sh npm run lint ```