2FA Custom Form

Reply to 2FA Custom Form on Tue, 22 Dec 2020 17:30:08 GMT

dan — Tue, 22 Dec 2020 17:30:08 GMT

Hi @daniel-barrett ,

Sorry for the hassle!

All the hosted login pages that FusionAuth makes available are documented in the themes section.

That Integration Points doc is pretty new, but if you haven't seen it is worth a read. Would love any feedback on that.

Reply to 2FA Custom Form on Tue, 22 Dec 2020 13:47:15 GMT

daniel.barrett — Tue, 22 Dec 2020 13:47:15 GMT

Hi @dan just saw this.

Yes, I think I'm all straightened out on MFA for now but I have a followup:

https://fusionauth.io/community/forum/topic/687/signup-registration-flow

It's sort of related to this ticket in that I'm running into a similar set of questions around the Signup/Registration flow that I had here. Namely: your docs list Registration as a series of API calls, but I want to know if there is an out-of-the-box form (like the Login form) that accomplishes the same thing. I haven't been able to find any documentation on it.

I think what was confusing to me about the MFA flow above was that the MFA flow was also documented as a series of API calls. So I built my own forms for collecting the information and submitting the code. That's why I was surprised to find an out-of-the-box MFA code form as part of the login flow once I enabled MFA. There wasn't any mention of this form in the docs. And as I looked, I can't find mention of any forms in the docs. I don't want the same thing to happen to me on the Registration flow, so I want to check first.

Thanks!

Reply to 2FA Custom Form on Fri, 18 Dec 2020 21:51:30 GMT

dan — Fri, 18 Dec 2020 21:51:30 GMT

Sounds like you figured everything out? Any further questions about MFA functionality?

Just a heads up that we're in the middle of reworking the MFA functionality, as outlined in our GitHub issues milestones: https://github.com/fusionauth/fusionauth-issues/milestones

The MFA project is currently in the 1.24.0 milestone (though, software being software, features do move between milestones).

Reply to 2FA Custom Form on Wed, 16 Dec 2020 19:32:30 GMT

daniel.barrett — Wed, 16 Dec 2020 19:32:30 GMT

I figured out the problem of the SMS message not sending: I had not been persisting the mobile phone number on the user entity.

I'm now making a PATCH call to the user with the mobile_phone after sending the initial code and before enabling 2FA on the user.

Reply to 2FA Custom Form on Wed, 16 Dec 2020 18:48:44 GMT

daniel.barrett — Wed, 16 Dec 2020 18:48:44 GMT

I went and implemented the above 2FA form in my own app that prompts the user for a phone and verification code.

Enrolling in 2FA now works. Twilio integration works great. I get a code texted to me and I can use that code to enroll my user with 2FA (delivery="TextMessage") My user now has 2FA enabled.

When I hit the /authorize page (in fusionauth ui) to log in and enter my credentials, I get hit with a 2FA box, but the SMS message isn't sending. Should I expect fusionauth's ui to do that? Or should I be calling POST /api/two-factor/send myself?

I think my general sense of confusion stems from the fact that the 2FA w/ Twilio Push Tutorial is laid out as a series of API calls. Am I responsible for making all those API calls from my own webapp (and writing/hosting the forms that do so)? Or are the fusionauth forms supposed to handle that?

Reply to 2FA Custom Form on Tue, 15 Dec 2020 17:05:05 GMT

daniel.barrett — Tue, 15 Dec 2020 17:05:05 GMT

I'm realizing this might refer to a form that we build in our own web application that we can then proxy through to the FusionAuth API, is that correct?