Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Duo Auth API - Auth

See more Duo Auth MFA Examples

The /auth endpoint performs second-factor authentication for a user by sending a push notification to the user's smartphone app, verifying a passcode, or placing a phone call. It is also used to send the user a new batch of passcodes via SMS.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Http,
  Chilkat.HttpRequest,
  Chilkat.HttpResponse,
  Chilkat.JsonObject;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  integrationKey: string;
  secretKey: string;
  http: THttp;
  url: string;
  req: THttpRequest;
  resp: THttpResponse;
  json: TJsonObject;
  responseResult: string;
  responseStatus: string;
  responseStatus_msg: string;
  stat: string;

begin
  success := False;

  //  This example assumes the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  integrationKey := 'DIMS3V5QDVG9J9ABRXC4';
  secretKey := 'HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab';

  http := THttp.Create;

  http.Accept := 'application/json';

  //  Use your own hostname here:
  url := 'https://api-a03782e1.duosecurity.com/auth/v2/auth';

  //  This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
  //  generate and send the HMAC signature for the requires based on the integration key and secret key.
  http.Login := integrationKey;
  http.Password := secretKey;

  req := THttpRequest.Create;
  req.AddParam('username','matt');
  req.AddParam('factor','push');
  //  The device ID can be obtained from the preauth response.  See Duo Preauth Example
  req.AddParam('device','DP6GYVTQ5NK82BMR851F');

  req.HttpVerb := 'POST';
  req.ContentType := 'application/x-www-form-urlencoded';

  resp := THttpResponse.Create;
  success := http.HttpReq(url,req,resp);
  if (success = False) then
    begin
      WriteLn(http.LastErrorText);
      Exit;
    end;

  WriteLn('status code = ' + resp.StatusCode);

  json := TJsonObject.Create;
  success := json.Load(resp.BodyStr);
  json.EmitCompact := False;
  WriteLn(json.Emit());

  //  Sample successful output:

  //  status code = 200

  //  {
  //    "response": {
  //      "result": "allow",
  //      "status": "allow",
  //      "status_msg": "Success. Logging you in..."
  //    },
  //    "stat": "OK"
  //  }

  //  Sample code to parse the above JSON response..

  //  Use this online tool to generate parsing code from sample JSON: 
  //  Generate Parsing Code from JSON

  responseResult := json.StringOf('response.result');
  responseStatus := json.StringOf('response.status');
  responseStatus_msg := json.StringOf('response.status_msg');
  stat := json.StringOf('stat');


  http.Free;
  req.Free;
  resp.Free;
  json.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.