Skip to content
/ TwoFactorAuthenticator Public
forked from BrandonPotter/GoogleAuthenticator

Simple, easy to use server-side/desktop two-factor authentication library for .NET that works with authenticator apps from Google / MS and Authy.

License

Apache-2.0 license
1 star 126 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tobster-de/TwoFactorAuthenticator

BranchesTags
 
 

Repository files navigation

TwoFactorAuthenticator

Simple, easy to use server-side/desktop two-factor authentication library for .NET that works with authenticator apps e.g. from Google, from Microsoft, Authy or LastPass.

Build Status NuGet Status

Install-Package TwoFactorAuthenticator

Usage

Also see additional example projects at

key should be stored by your application for future authentication and shouldn't be regenerated for each request. The process of storing the private key is outside the scope of this library and is the responsibility of the application.

Generate setup code

using TwoFactorAuthenticator;
using TwoFactorAuthenticator.QrCoder;

string key = Guid.NewGuid().ToString().Replace("-", "").Substring(0, 10);

Authenticator tfa = new Authenticator();
QrCoderSetupCodeGenerator qrscg = new QrCoderSetupCodeGenerator { PixelsPerModule = 3 };

SetupCode setupInfo = tfa.GenerateSetupCode("Test Two Factor", "user@example.com", key, false);

string qrCodeImageUrl = setupInfo.GenerateQrCodeUrl(qrscg);

using (MemoryStream ms = new MemoryStream(setupCode.GetQrCodeImageData(qrscg)))
{
    qrCodePictureBox.Image = Image.FromStream(ms);
}

this.setupInfo.Text = "Account: " + setupCode.Account + System.Environment.NewLine +
                      "Encoded Key: " + setupCode.ManualEntryKey;

Generation

Authenticator tfa = new Authenticator();
PasswordToken token = tfa.GetCurrentPIN(key);
using (var unsafeToken = UnsafeToken.FromPasswordToken(token))
{
    string pin = unsafeToken.ToString();
}

Verification

string input = "123456";

Authenticator tfa = new Authenticator();
PasswordToken token = PasswordToken.FromPassCode(int.Parse(input));

bool result = tfa.ValidateTwoFactorPIN(key, token);

History

1.1.0

  • Breaking changes:
    • TwoFactorAuthenticator should not be named like its namespace (created collision); new name is just Authenticator
    • Changed interface to use secured PasswordToken instead of primitive string
  • Introduced UnsafeToken for generation / UI purposes
  • Introduced FactorControl for WinForms

1.0.1

  • Forked and separated into two packages
  • Lowest supported versions are now netstandard2.0 and .Net 4.7.2.

Common Pitfalls

  • Don't use the secret key and ManualEntryKey interchangeably. ManualEntryKey is used to enter into the authenticator app when scanning a QR code is impossible and is derived from the secret key (discussion example)

About

Simple, easy to use server-side/desktop two-factor authentication library for .NET that works with authenticator apps from Google / MS and Authy.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

1 fork
Report repository

Languages

  • C# 98.7%
  • ASP.NET 1.3%