def create_google_authenticator_url(user, realm, key, type="hmac", serial=""): ''' This creates the google authenticator URL. This url may only be 119 characters long. Otherwise we qrcode.js can not create the qrcode. If the URL would be longer, we shorten the username We expect the key to be hexlified! ''' # policy depends on some lib.util if "hmac" == type.lower(): type = "hotp" key_bin = binascii.unhexlify(key) # also strip the padding =, as it will get problems with the google app. otpkey = base64.b32encode(key_bin).strip('=') #'url' : "otpauth://hotp/%s?secret=%s&counter=0" % ( user@realm, otpkey ) base_len = len("otpauth://%s/?secret=%s&counter=0" % (type, otpkey)) max_len = 119 allowed_label_len = max_len - base_len log.debug("we have got %s characters left for the token label" % str(allowed_label_len)) Policy = PolicyClass(request, config, c, get_privacyIDEA_config()) label = Policy.get_tokenlabel(user, realm, serial) label = label[0:allowed_label_len] url_label = quote(label) return "otpauth://%s/%s?secret=%s&counter=0" % (type, url_label, otpkey)
def create_motp_url(user, realm, key, serial=""): ''' This creates the motp url as described at http://huseynov.com/index.php?post=motp-vs-google-authenticator-and-a-new-otp-app The format is: motp://SecureSite:[email protected]?secret=JBSWY3DPEHPK3PXP ''' # For Token2 the OTPKEY is hexencoded, not base32! otpkey = key Policy = PolicyClass(request, config, c, get_privacyIDEA_config()) label = Policy.get_tokenlabel(user, realm, serial) allowed_label_len = 20 label = label[0:allowed_label_len] url_label = quote(label) return "motp://privacyidea:%s?secret=%s" % (url_label, otpkey)
def create_oathtoken_url(user, realm, otpkey, type="hmac", serial=""): #'url' : 'oathtoken:///addToken?name='+serial + # '&key='+otpkey+ # '&timeBased=false&counter=0&numDigites=6&lockdown=true', timebased = "" if "totp" == type.lower(): timebased = "&timeBased=true" Policy = PolicyClass(request, config, c, get_privacyIDEA_config()) label = Policy.get_tokenlabel(user, realm, serial) url_label = quote(label) url = "oathtoken:///addToken?name=%s&lockdown=true&key=%s%s" % ( url_label, otpkey, timebased ) return url