1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
import {
AGGIETIME_URI,
LOGIN_PATH,
DUO_IFRAME_SELECTOR,
DUO_FACTOR,
DUO_INPUT_FIELD_SELECTORS,
EXECUTION_SELECTOR,
} from "./constants.js";
import { parse } from "node-html-parser";
import axios from "axios";
const make_auth_params = (username, password, execution) =>
new URLSearchParams({
username,
password,
execution,
_eventId: "submit",
geolocation: "",
});
const push_duo_get_cookie = async (
duo_iframe_obj,
response_url,
username,
password,
execution
) => {
const [duo_host, duo_sig, duo_src] = [
"data-host",
"data-sig-request",
"src",
].map((attr) => duo_iframe_obj.getAttribute(attr));
const transaction_id = duo_sig.split(":")[0];
const duo = axios.create({
withCredentials: true,
baseURL: `https://${duo_host}`,
});
const duo_frame = await duo
.post(
`/frame/web/v1/auth?tx=${transaction_id}&parent=${response_url}&v=2.6`
)
.then(({ data }) => parse(data));
const [sid, out_of_date, days_out_of_date, days_to_block, device] =
DUO_INPUT_FIELD_SELECTORS.map((selector) =>
duo_frame.querySelector(selector).getAttribute("value")
);
const push_params = new URLSearchParams({
sid,
out_of_date,
days_out_of_date,
days_to_block,
device,
factor: DUO_FACTOR,
});
const {
response: { txid },
} = await duo.post("/frame/prompt", push_params).then(({ data }) => data);
return await wait_approve_duo(duo, sid, txid);
};
const wait_approve_duo = async (duo, sid, txid) => {
// First status to confirm device was pushed to
// Second to long-poll for approval :3
const status_params = new URLSearchParams({
sid,
txid,
});
const data = await duo
.post("/frame/status", status_params)
.then(async ({ data }) => {
if (data.stat === "OK" && data.response.status_code === "pushed")
return await duo
.post("/frame/status", status_params)
.then(({ data }) => data);
return data;
});
const {
response: { result_url },
} = data;
console.log(data);
return await duo.post(result_url, new URLSearchParams({ sid }));
};
export const login = async (username, password) => {
const login_page_promise = axios.get(`${AGGIETIME_URI}/${LOGIN_PATH}`);
const {
request: {
res: { responseUrl: response_url },
},
} = await login_page_promise;
const cas_root = await login_page_promise.then(({ data }) => parse(data));
const execution = cas_root
.querySelector(EXECUTION_SELECTOR)
.getAttribute("value");
const duo_iframe_obj = await axios
.post(response_url, make_auth_params(username, password, execution))
.then(({ data }) => parse(data).querySelector(DUO_IFRAME_SELECTOR));
const cookie = await push_duo_get_cookie(
duo_iframe_obj,
response_url,
username,
password,
execution
);
console.log(cookie);
console.log(cookie.data);
return cookie;
};
|
