GETTING STARTED
AUTHENTICATION
TOTP

Authenticating users using Time-based One-time Password Algorithm (TOTP).

A method that then allows an app to use Google Authenticator to create the 2nd factor token - as another option to myds creating it and sending via email or SMS.

SETUP

1	SETUP_LOGON_GENERATE_TOKEN	Send issuer=, user=
2	Get back manual entry key or URL to QR code.	User sets up new accounts in Google Authenticator
3	SETUP_USER_MANAGE	Set authenticationdelivery=3
4	LOGON using a code generated by authenticator	Use the code generated by Google Authenticator in the passwordhash= and parameter logontoken= (replacing passwordcode=) so it can be verified using function above and if valid in the hash.

AUTHENTICATION (LOGON) USING TOKEN

Send back to LOGON method as final part of MD5 hash replacing passwordcode= with logontoken=

Authentication

Data protection using cryptography

TOTP (RFC6238)

SETUP_LOGON_GENERATE_TOKEN

SETUP_USER_MANAGE

Demo Using Google Authenticator

GETTING STARTEDAUTHENTICATIONTOTP

GETTING STARTED
AUTHENTICATION
TOTP