M
Matt Baker
Guest
Do you have a specific token system you are required to use? There are open two-factory systems such as TOTP that aren’t very complex to implement. For phone based implementation, the one from Google, Google Authenticator , is one possibility. There are similar for apple devices. There are a few java implementation to generate the server side tokens that work with the mobile client app., I’m sure it wouldn’t be terribly difficult to clone it in ABL. https://github.com/wstrange/GoogleAuth Someone on another forum link already has it working by calling out to an .exe community.progress.com/.../11132 Should be pretty easy to rebuild this in ABL, as its mostly just an HMAC against a shared key + unix epoc time and a bit of munging to reduce the amount of data. Explained here: http://jacob.jkrall.net/totp/ Sharing the secret value is normally done through a QR code so you’d need some way to display a QR code so the mobile client can read it. Lots of discussion on stackoverflow: stackoverflow.com/.../is-there-a-tutorial-on-how-to-implement-google-authenticator-in-net-apps
Continue reading...
Continue reading...