Has anyone used this for their website ? I didn't realise until today that the whole project is open source and you can use GA with your own sites. There's an example at http://dendory.net/twofactors/
There are clients available for android, iPhone and wp7 (alpha)
I was wondering if anyone had written an ABL library to authenticate / decode the totp (Timebased one time password) and used this to create a client-principal which then can be used for the duration of the session.
A great way of getting 2-factor authentication for your site
aww, shucks. Looks like it's down to me then
okay, got it working using
1) Google authenticator for the client device (iPhone / Android)
2) Multiotp command line authenticator from http://www.multiotp.net/
3) authenication via RADIUS using http://www.tekradius.com/
4) Working on apache module authentication using http://code.google.com/p/mod-authn-otp/ (not quite there yet - command line works but not the web server part)
basic ABL working using this (really cruddy) code
DEF VAR a AS LONGCHAR.
IF search("c:\temp\jls.txt") NE ? THEN OS-DELETE VALUE("c:\temp\jls.txt") NO-ERROR.
OS-COMMAND SILENT VALUE('C:\multiotp\multiotp.exe -debug "my account" 883443 >c:\temp\jls.txt 2>&1').
COPY-LOB FROM FILE "c:\temp\jls.txt" TO a.
MESSAGE string(a) VIEW-AS ALERT-BOX.
Well. That was ... fun ....
Now to look for proper dll and .net versions ..
this looks better
MESSAGE (NEW DotR.#Otp.Account())
:Name("my account")
:Password("708476")
:Authenticated()
VIEW-AS ALERT-BOX.
I wonder, did you got something functional, that you could recommend?
Thanks.