From d69cebd8c703f0a1f6839944f1c949bce350b02e Mon Sep 17 00:00:00 2001
From: Byron Jones <glob@mozilla.com>
Date: Tue, 13 Oct 2015 00:49:00 +0800
Subject: Bug 1199089 - add support for duo-security

---
 Bugzilla/MFA/Duo.pm | 53 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 53 insertions(+)
 create mode 100644 Bugzilla/MFA/Duo.pm

(limited to 'Bugzilla/MFA/Duo.pm')

diff --git a/Bugzilla/MFA/Duo.pm b/Bugzilla/MFA/Duo.pm
new file mode 100644
index 000000000..4c9aa1184
--- /dev/null
+++ b/Bugzilla/MFA/Duo.pm
@@ -0,0 +1,53 @@
+# This Source Code Form is subject to the terms of the Mozilla Public
+# License, v. 2.0. If a copy of the MPL was not distributed with this
+# file, You can obtain one at http://mozilla.org/MPL/2.0/.
+#
+# This Source Code Form is "Incompatible With Secondary Licenses", as
+# defined by the Mozilla Public License, v. 2.0.
+
+package Bugzilla::MFA::Duo;
+use strict;
+use parent 'Bugzilla::MFA';
+
+use Bugzilla::DuoWeb;
+use Bugzilla::Error;
+
+sub can_verify_inline {
+    return 0;
+}
+
+sub enroll {
+    my ($self, $params) = @_;
+
+    $self->property_set('user', $params->{username});
+}
+
+sub prompt {
+    my ($self, $vars) = @_;
+    my $template = Bugzilla->template;
+
+    $vars->{sig_request} = Bugzilla::DuoWeb::sign_request(
+        Bugzilla->params->{duo_ikey},
+        Bugzilla->params->{duo_skey},
+        Bugzilla->params->{duo_akey},
+        $self->property_get('user'),
+    );
+
+    print Bugzilla->cgi->header();
+    $template->process('mfa/duo/verify.html.tmpl', $vars)
+        || ThrowTemplateError($template->error());
+}
+
+sub check {
+    my ($self, $params) = @_;
+
+    return if Bugzilla::DuoWeb::verify_response(
+        Bugzilla->params->{duo_ikey},
+        Bugzilla->params->{duo_skey},
+        Bugzilla->params->{duo_akey},
+        $params->{sig_response}
+    );
+    ThrowUserError('mfa_bad_code');
+}
+
+1;
-- 
cgit v1.2.3-24-g4f1b