Java
Java
Duo Auth API - Async Auth
See more Duo Auth MFA Examples
If you enable async, then your application will be able to retrieve real-time status updates from the authentication process, rather than receiving no information until the process is complete.Chilkat Java Downloads
import com.chilkatsoft.*;
public class ChilkatExample {
static {
try {
System.loadLibrary("chilkat");
} catch (UnsatisfiedLinkError e) {
System.err.println("Native code library failed to load.\n" + e);
System.exit(1);
}
}
public static void main(String argv[])
{
boolean success = false;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
String integrationKey = "DIMS3V5QDVG9J9ABRXC4";
String secretKey = "HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab";
CkHttp http = new CkHttp();
http.put_Accept("application/json");
// Use your own hostname here:
String url = "https://api-a03782e1.duosecurity.com/auth/v2/auth";
// This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
// generate and send the HMAC signature for the requires based on the integration key and secret key.
http.put_Login(integrationKey);
http.put_Password(secretKey);
CkHttpRequest req = new CkHttpRequest();
req.AddParam("username","matt");
req.AddParam("factor","push");
// The device ID can be obtained from the preauth response. See Duo Preauth Example
req.AddParam("device","DP6GYVTQ5NK82BMR851F");
// Add the async param to get an immediate response, then periodically check for updates to find out when the MFA authentication completes for fails.
req.AddParam("async","1");
req.put_HttpVerb("POST");
req.put_ContentType("application/x-www-form-urlencoded");
CkHttpResponse resp = new CkHttpResponse();
success = http.HttpReq(url,req,resp);
if (success == false) {
System.out.println(http.lastErrorText());
return;
}
System.out.println("status code = " + resp.get_StatusCode());
CkJsonObject json = new CkJsonObject();
success = json.Load(resp.bodyStr());
json.put_EmitCompact(false);
System.out.println(json.emit());
if (resp.get_StatusCode() != 200) {
return;
}
// Sample successful output:
// status code = 200
// {
// "stat": "OK",
// "response": {
// "txid": "45f7c92b-f45f-4862-8545-e0f58e78075a"
// }
// }
String txid = json.stringOf("response.txid");
// Use your own hostname here:
CkStringBuilder sbUrl = new CkStringBuilder();
sbUrl.Append("https://api-a03782e1.duosecurity.com/auth/v2/auth_status?txid=");
sbUrl.Append(txid);
String url = sbUrl.getAsString();
System.out.println("Auth status URL: " + url);
CkStringBuilder sbResult = new CkStringBuilder();
String responseStatus;
String responseStatus_msg;
// Wait for a response...
int i = 0;
int maxWaitIterations = 100;
while (i < maxWaitIterations) {
// Wait 3 seconds.
http.SleepMs(3000);
System.out.println("Polling...");
success = http.HttpNoBody("GET",url,resp);
if (success == false) {
System.out.println(http.lastErrorText());
return;
}
if (resp.get_StatusCode() != 200) {
System.out.println("error status code = " + resp.get_StatusCode());
System.out.println(resp.bodyStr());
System.out.println("Failed.");
return;
}
// Sample response:
// {
// "stat": "OK",
// "response": {
// "result": "waiting",
// "status": "pushed",
// "status_msg": "Pushed a login request to your phone..."
// }
// }
json.Load(resp.bodyStr());
// The responseResult can be "allow", "deny", or "waiting"
sbResult.Clear();
json.StringOfSb("response.result",sbResult);
responseStatus = json.stringOf("response.status");
responseStatus_msg = json.stringOf("response.status_msg");
System.out.println(sbResult.getAsString());
System.out.println(responseStatus);
System.out.println(responseStatus_msg);
System.out.println("");
if (sbResult.ContentsEqual("waiting",true) == true) {
i = i+1;
}
else {
// Force loop exit..
i = maxWaitIterations;
}
}
System.out.println("Finished.");
}
}