ruimarinho/authy-client ruimarinho/authy-client

  • Stars
    star
    122
  • Rank 292,031 (Top 6 %)
  • Language
    JavaScript
  • Created over 8 years ago
  • Updated almost 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ruimarinho/authy-client
github

ruimarinho

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A complete Authy client with support for TOTP, OneTouch, Phone Verification and Phone Intelligence APIs

authy-client

A complete Authy client with support for TOTP, OneTouch, Phone Verification and Phone Intelligence APIs.

Status

npm version build status

Installation

Install the package via yarn:

yarn add authy-client

or via npm:

npm install authy-client --save

Usage

Client

The following is a complete example of registering a user and requesting an SMS using any of the three possible async APIs offered by this package.

Using await/async (requires babel)
import { Client } from 'authy-client';

const client = new Client({ key: 'foo' });

(async function() {
  const { user: { id: authyId } } = await client.registerUser({
    countryCode: 'PT',
    email: '[email protected]',
    phone: '911234567' }
  );
  const { cellphone } = await client.requestSms({ authyId });

  console.log(`SMS requested to ${cellphone}`)
}());
Using promises
const Client = require('authy-client').Client;
const client = new Client({ key: 'foo' });

client.registerUser({
  countryCode: 'PT',
  email: '[email protected]',
  phone: '911234567'
}).then(function(response) {
  return response.user.id;
}).then(function(authyId) {
  return client.requestSms({ authyId: authyId });
}).then(function(response) {
  console.log(`SMS requested to ${response.cellphone}`);
});
Using callbacks
const Client = require('authy-client').Client;
const client = new Client({ key: 'foo' });

client.registerUser({
  countryCode: 'PT',
  email: '[email protected]',
  phone: '911234567'
}, function(err, res) {
  if (err) throw err;

  client.requestSms({ authyId: res.user.id }, function(err, res) {
    if (err) throw err;

    console.log(`SMS requested to ${res.cellphone}`)
  });
});

If you want to run this example without first transpiling it, you can install the babel-cli package and run node_modules/.bin/babel-node example.js.

Command-line interface

Another option of interacting with Authy's API is by using the available command-line interface (cli). It handles most tasks without require any coding.

demo

❯ authy
Commands:
  activity <command>     Manage activity
  application <command>  Manage application information
  onetouch <command>     Manage onetouch requests
  phone <command>        Manage phone verifications
  user <command>         Manage users

Options:
  --key     API Key                                          [string] [required]
  --pretty  Whether to print pretty results            [boolean] [default: true]
  --help    Show help                                                  [boolean]

Note that all calls must be authenticated using the API Key. However, if you prefer, you can define the API Key using the environment variable AUTHY_KEY such as:

❯ AUTHY_KEY=foobar authy <command>

Client({ key }, [options])

Arguments

  1. args (Object): the required arguments object.
  2. args.key (string): The private API key obtained from the Authy Dashboard.
  3. [options] (Object): The options object.
  4. [options.host=https://api.authy.com] (string): The target API endpoint.
  5. [options.timeout=5000] (number): The maximum request time, in milliseconds.
Example
new Client({ key: 'foo' }, { timeout: 10000 });

TOTP API

Authy TOTP (Time-based One-time Password) is an API that allows application developers to enable two-factor authentication (2FA) for a user. 2FA, as the name suggests, is an additional step to secure an user's account or action by comparing a code generated or sent to the user's mobile phone against a shared secret.

registerUser({ countryCode, email, phone }, [callback])

Create an Authy user based on the users mobile phone number and email. The returned Authy Id should be stored on your database for subsequent calls.

The library automatically converts conforming country codes (e.g. US) to the corresponding country calling code (e.g. 1) and validates the resulting phone number thoroughly before submitting it to Authy.

Arguments

  1. args (Object): the required arguments object.
  2. args.countryCode (string): the user's phone country code in ISO 3166 alpha 2 format (recommended format, e.g. US) or a numeric country calling code (use at your own risk).
  3. args.email (string): the user's email address.
  4. args.phone (string): the user's phone number.
  5. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const { user: { id: authyId } } = await client.registerUser({ countryCode: 'PT', email: '[email protected]', phone: '911234567' });

console.log('Authy Id', authyId);
Using promises
client.registerUser({ countryCode: 'PT', email: '[email protected]', phone: '911234567' })
  .then(function(response) {
    console.log('Authy Id', response.user.id);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.registerUser({ countryCode: 'PT', email: '[email protected]', phone: '911234567' }, function(err, res) {
  if (err) throw err;

  console.log('Authy Id', res.user.id);
});
Using cli
❯ AUTHY_KEY=foobar authy user create 911234567 PT [email protected]

requestSms({ authyId }, [options, callback])

Request an SMS with a token for users that don't own a smartphone. If the Authy app is in use by the user, this request is ignored and a push notification is sent instead.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. [options] (Object): the options object.
  4. [options.action] (string): the action or context that is being validated.
  5. [options.force] (boolean): whether to send an SMS even if the user is using the mobile application.
  6. [options.message] (string): a message for the specific action, if one is set.
  7. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.requestSms({ authyId: 1635 });

console.log('Message sent successfully to', response.cellphone);
Using promises
client.requestSms({ authyId: 1635 })
  .then(function(response) {
    console.log('Message sent successfully to', response.cellphone);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.requestSms({ authyId: 1635 }, function(err, res) {
  if (err) throw err;

  console.log('Message sent successfully to', res.cellphone);
});
Using cli
❯ AUTHY_KEY=foobar authy user request sms 1635

requestCall({ authyId }, [options, callback])

Request a call with a token for users that don't own a smartphone. If the Authy app is in use by the user, this request is ignored and a push notification is sent instead.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. [options] (Object): the options object.
  4. [options.action] (string): the action or context that is being validated.
  5. [options.force] (boolean): whether to call the user even if the mobile application is in use.
  6. [options.message] (string): a message for the specific action, if one is set.
  7. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.requestCall({ authyId: 1635 });

console.log('Call requested successfully to', response.cellphone);
Using promises
client.requestCall({ authyId: 1635 })
  .then(function(response) {
    console.log('Call requested successfully to', response.cellphone);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.requestCall({ authyId: 1635 }, function(err, res) {
  if (err) throw err;

  console.log('Call requested successfully to', res.cellphone);
});
Using cli
❯ AUTHY_KEY=foobar authy user request call 1635

verifyToken({ authyId, token }, [options, callback])

Verify if a token submitted by the user is valid or not.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. args.token (string): the token to verify.
  4. [options] (Object): the options object.
  5. [options.force] (boolean): whether to verify the token regardless of the user's login status.
  6. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.verifyToken({ authyId: 1635, token: '1234567' });

console.log('Token is valid');
Using promises
client.verifyToken({ authyId: 1635, token: '1234567' })
  .then(function(response) {
    console.log('Token is valid');
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.verifyToken({ authyId: 1635, token: '1234567' }, function(err, res) {
  if (err) throw err;

  console.log('Token is valid');
});
Using cli
❯ AUTHY_KEY=foobar authy user verify --token 1234567

deleteUser({ authyId }, [options, callback])

Delete a user from the application.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. [options] (Object): the options object.
  4. [options.ip] (string): the IP requesting to delete the user.
  5. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.deleteUser({ authyId: 1635 });

console.log('User has been scheduled for deletion');
Using promises
client.deleteUser({ authyId: 1635 })
  .then(function(response) {
    console.log('User has been scheduled for deletion');
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.deleteUser({ authyId: 1635 }, function(err, res) {
  if (err) throw err;

  console.log('User has been scheduled for deletion');
});
Using cli
❯ AUTHY_KEY=foobar authy user delete 1635
registerActivity({ authyId, data, type }, [options, callback])

Register a user activity.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. args.type (string): the activity type (one of password_reset, banned, unbanned or cookie_login).
  4. [data] (Object): a data object associated with the activity.
  5. [options] (Object): the options object.
  6. [options.ip] (string): the IP of the user registering the activity.
  7. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.registerActivity({ authyId: 1635, data: { reason: 'foo' }, type: 'banned' }, { ip: '127.0.0.1' });

console.log('Activity registered');
Using promises
client.registerActivity({ authyId: 1635, data: { reason: 'foo' }, type: 'banned' }, { ip: '127.0.0.1' })
  .then(function(response) {
    console.log('Activity registered');
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.registerActivity({ authyId: 1635, data: { reason: 'foo' }, type: 'banned' }, { ip: '127.0.0.1' }, function(err, res) {
  if (err) throw err;

  console.log('Activity registered');
});
Using cli
❯ AUTHY_KEY=foobar authy activity create 1635 \
    --data.reason foo \
    --type banned \
    --ip 127.0.0.1

getUserStatus({ authyId }, [options, callback])

Retrieve the user status, such as the registered country code, phone number, devices and confirmation status.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. [options] (Object): the options object.
  4. [options.ip] (string): the IP of the user requesting to see the user details.
  5. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.getUserStatus({ authyId: 1635 });

console.log('User status', response.status);
Using promises
client.getUserStatus({ authyId: 1635 })
  .then(function(response) {
    console.log('User status', response.status);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.getUserStatus({ authyId: 1635 }, function(err, res) {
  if (err) throw err;

  console.log('User status', response.status);
});
Using cli
❯ AUTHY_KEY=foobar authy user get status 1635

getApplicationDetails([options, callback])

Retrieve application details such as its name or current billing plan.

Arguments
  1. [options] (Object): the options object.
  2. [options.ip] (string): the IP of the user requesting to see the application details.
  3. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.getApplicationDetails();

console.log('Application details', response.app);
Using promises
client.getApplicationDetails()
  .then(function(response) {
    console.log('Application details', response.app);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.getApplicationDetails(function(err, res) {
  if (err) throw err;

  console.log('Application details', response.app);
});
Using cli
❯ AUTHY_KEY=foobar authy application get details

getApplicationStatistics([options, callback])

Retrieve application statistics by month and current quotas.

Arguments
  1. [options] (Object): the options object.
  2. [options.ip] (string): the IP of the user requesting to see the application statistics.
  3. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.getApplicationStatistics();

console.log('Application statistics', response);
Using promises
client.getApplicationStatistics()
  .then(function(response) {
    console.log('Application statistics', response);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.getApplicationStatistics(function(err, res) {
  if (err) throw err;

  console.log('Application statistics', response);
});
Using cli
❯ AUTHY_KEY=foobar authy application get statistics

Phone Verification API

The Phone Verification API allows for a simple phone verification for situations where the complexity of the TOTP API is not required. First, a code is sent to the user's phone number and then that code is submitted back by the user. Authy verifies that the code matches the one issued for it.

startPhoneVerification({ countryCode, phone, via }, [options, callback])

Verify a phone number by sending it a verification code by SMS or call. Custom messages for the SMS are currently not working so support has not been added.

Arguments
  1. args (Object): the required arguments object.
  2. args.countryCode (string): the user's phone country code in ISO 3166 alpha 2 format (recommended format, e.g. US) or a numeric country calling code (use at your own risk).
  3. args.phone (string): the user's phone number to verify.
  4. args.via (string): the mechanism used to send the verification code (sms or call).
  5. [options] (Object): the options object.
  6. [options.locale] (string): the locale of the message received by the user. If none is given, Authy will attempt to auto-detect it based on the country code passed, otherwise English will be used.
  7. [options.codeLength] (integer): the number of verification digits sent (by default, 4). Allowed values are 4-10.
  8. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
import { enums } from 'authy-client';

const response = await client.startPhoneVerification({ countryCode: 'US', phone: '7754615609', via: enums.verificationVia.SMS });

console.log('Phone information', response);
Using promises
const enums = require('authy-client').enums;

client.startPhoneVerification({ countryCode: 'US', phone: '7754615609', via: enums.verificationVia.SMS })
  .then(function(response) {
    console.log('Phone information', response);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
const enums = require('authy-client').enums;

client.startPhoneVerification({ countryCode: 'US', locale: 'en', phone: '7754615609', via: enums.verificationVia.SMS }, function(err, res) {
  if (err) throw err;

  console.log('Phone information', response);
});
Using cli
❯ AUTHY_KEY=foobar authy phone verify 7754615609 US \
    --locale=en \
    --via=sms

verifyPhone({ countryCode, phone, token }, [callback])

Verify a phone number through a verification code.

Arguments
  1. args (Object): the required arguments object.
  2. args.countryCode (string): the user's phone country code in ISO 3166 alpha 2 format (recommended format, e.g. US) or a numeric country calling code (use at your own risk).
  3. args.phone (string): the user's phone number to verify.
  4. args.token (string): the token submitted by the user to verify the phone.
  5. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.verifyPhone({ countryCode: 'US', phone: '7754615609', token: '1234' });

console.log('Verification code is correct');
Using promises
client.verifyPhone({ countryCode: 'US', phone: '7754615609', token: '1234' })
  .then(function(response) {
    console.log('Verification code is correct');
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.verifyPhone({ countryCode: 'US', phone: '7754615609', token: '1234' }, function(err, res) {
  if (err) throw err;

  console.log('Verification code is correct');
});
Using cli
❯ AUTHY_KEY=foobar authy phone verify 7754615609 US --token 1234

Phone Intelligence API

The Phone Intelligence API allows an application developer to retrieve information about a specific number such as its type (VoIP, landline or mobile) and carrier.

getPhoneInformation({ countryCode, phone }, [options, callback])

Verify a phone number by sending it a verification code by SMS or call. Custom messages for the SMS are currently not working so support has not been added.

Arguments
  1. args (Object): the required arguments object.
  2. args.countryCode (string): the phone's country code in ISO 3166 alpha 2 format (recommended format, e.g. US) or a numeric country calling code (use at your own risk).
  3. args.phone (string): the phone's number to retrieve information about.
  4. [options] (Object): the options object.
  5. [options.ip] (string): the IP of the user requesting to retrieve information about the phone.
  6. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.getPhoneInformation({ countryCode: 'US', phone: '7754615609' });

console.log('Phone information', response);
Using promises
client.getPhoneInformation({ countryCode: 'US', phone: '7754615609' })
  .then(function(response) {
    console.log('Phone information', response);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.getPhoneInformation({ countryCode: 'US', phone: '7754615609' }, function(err, res) {
  if (err) throw err;

  console.log('Phone information', response);
});
Using cli
❯ AUTHY_KEY=foobar authy phone get information 7754615609 US

OneTouch API

Authy OneTouch is an API that allows application developers to create simple approval requests so that users can frictionless approve or deny such request. It can be used for a variety of purposes, such as authentication (e.g. login approval) or validation (e.g. financial transaction approval).

When the user takes actions, Authy sends a GET or POST callback to a URL defined on the application dashboard. The request, which can optionally be cryptographically verified, allows for immediate reaction. An alternate polling method can also be used.

createApprovalRequest({ authyId, details, logos, message }, [options, callback])

Create an approval request for the given Authy Id and send it to the user as a push notification.

Arguments
  1. args (Object): the required arguments object.
  2. args.authyId (string): the user's Authy Id.
  3. args.message (string): the message shown to the user upon receiving the approval request.
  4. [details] (Object): the details object.
  5. [details.hidden] (Object): a dictionary of hidden details associated with the approval request.
  6. [details.visible] (Object): a dictionary of visible details associated with the approval request.
  7. [logos] (array): the custom logos collection.
  8. [logos.<n>] (Object): a custom logo object.
  9. [logos.<n>.res] (string): the target resolution of the custom logo (one of default, low, med or high).
  10. [logos.<n>.url] (string): the url of the custom logo image.
  11. [options] (Object): the options object.
  12. [options.ttl] (integer): the number of seconds that the approval request will be available for being responded. If set to 0, the approval request won't expire.
  13. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.createApprovalRequest({
  authyId: 1635,
  details: {
    hidden: {
      ip_address: '10.10.3.203'
    },
    visible: {
      'Account Number': '981266321',
      location: 'California, USA',
      username: 'Bill Smith'
    }
  },
  logos: [{
    res: 'default',
    url: 'https://example.com/logos/default.png'
  }, {
    res: 'low',
    url: 'https://example.com/logos/low.png'
  }],
  message: 'Login requested for a CapTrade Bank account.',
}, {
  ttl: 120
});

console.log('Approval request UUID', response.approval_request.uuid);
Using promises
client.createApprovalRequest({
  authyId: 1635,
  details: {
    hidden: {
      ip_address: '10.10.3.203'
    },
    visible: {
      'Account Number': '981266321',
      location: 'California, USA',
      username: 'Bill Smith'
    }
  },
  logos: [{
    res: 'default',
    url: 'https://example.com/logos/default.png'
  }, {
    res: 'low',
    url: 'https://example.com/logos/low.png'
  }],
  message: 'Login requested for a CapTrade Bank account.',
}, {
  ttl: 120
}).then(function(response) {
  console.log('Approval request UUID', response.approval_request.uuid);
}).catch(function(error) {
  throw error;
});
Using callbacks
client.createApprovalRequest({
  authyId: 1635,
  details: {
    hidden: {
      ip_address: '10.10.3.203'
    },
    visible: {
      'Account Number': '981266321',
      location: 'California, USA',
      username: 'Bill Smith'
    }
  },
  logos: [{
    res: 'default',
    url: 'https://example.com/logos/default.png'
  }, {
    res: 'low',
    url: 'https://example.com/logos/low.png'
  }],
  message: 'Login requested for a CapTrade Bank account.',
}, {
  ttl: 120
}, function(err, res) {
  if (err) throw err;

  console.log('Approval request UUID', response.approval_request.uuid);
});
Using cli
❯ AUTHY_KEY=foobar authy onetouch create 1635 \
  'Login requested for a CapTrade Bank account.' \
  --hidden.ip_address 10.10.3.203 \
  --logos.0.res default \
  --logos.0.url 'https://example.com/logos/default.png' \
  --logos.1.res low \
  --logos.1.url 'https://example.com/logos/low.png' \
  --visible.'Account Number' 981266321 \
  --visible.location 'California, USA' \
  --visible.username 'Bill Smith' \
  --ttl 120

getApprovalRequest({ id }, [callback])

Get information about an approval request.

Arguments
  1. args (Object): the required arguments object.
  2. args.id (string): the id of the approval request.
  3. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
const response = await client.getApprovalRequest({ id: '550e8400-e29b-41d4-a716-446655440000' });

console.log('Approval request', response.approval_request);
Using promises
client.getApprovalRequest({ id: '550e8400-e29b-41d4-a716-446655440000' })
  .then(function(response) {
    console.log('Approval request', response.approval_request);
  })
  .catch(function(error) {
    throw error;
  });
Using callbacks
client.getApprovalRequest({ id: '550e8400-e29b-41d4-a716-446655440000' }, function(err, res) {
  if (err) throw err;

  console.log('Approval request', response.approval_request);
});
Using cli
❯ AUTHY_KEY=foobar authy phone get status 550e8400-e29b-41d4-a716-446655440000

verifyCallback({ body, headers, method, protocol, url }, [callback])

Authy callbacks contain a header (X-Authy-Signature) with an HTTP HMAC signature of the request. This signature can be used to verify the authenticity of the request.

Currently, GET requests cannot be validated, as only POST requests contain such signature.

If you have configured your Authy application to receive callbacks for OneTouch approval requests, you should verify their authenticity.

Arguments
  1. args (Object): the required arguments object.
  2. args.body (Object): the parsed body of the request.
  3. args.headers (Object): the headers of the request.
  4. args.method (string): the method of the request (GET or POST).
  5. args.protocol (string): the protocol of the request (http or https).
  6. args.url (string): the url of the request (e.g. /callback/onetouch).
  7. [callback] (Function): a callback, otherwise a Promise is returned.
Example
Using await/async (requires babel)
await client.verifyCallback({
  body: {
    approval_request: {
      expiration_timestamp: 1455911778,
      logos: null,
      transaction: {
        created_at_time: 1455825378,
        customer_uuid: '2ccf0040-ed25-0132-5987-0e67b818e6fb',
        details: {},
        device_details: null,
        device_geolocation: null,
        device_signing_time: 0,
        encrypted: false,
        flagged: false,
        hidden_details: {},
        message: '.',
        reason: null,
        requester_details: null,
        status: 'approved',
        uuid: '996201c0-b7a7-0133-7c06-0e67b818e6fb'
      }
    },
    authy_id: 1234567,
    callback_action: 'approval_request_status',
    device_uuid: '4d89c320-a9bb-0133-7c02-0e67b818e6fb',
    signature: 'BObhJgZwgU7O9r4Uo9VT6j6shAOe7y/IRGpW/N0Uq34/XHZU9E+aHOI5rcQzW1ZgNCECzVrqrsnjhYEK4Zq1naKWu0YNkuvILmMz8IxJEQH+c+6x186fjIjxvP4nu4p/pfUDomo/za24s1XOjtNlVsrDTDXClHUh5MjFQbyBjhFd8gOtmGVatN7K2Lx71I8YR2JDLbRX4DlJEMu++PLBn1nqQH9tbNYzX5jjX87CXPBtDfRwfWSs/imnfZ9zkDq4ZKuBcuwzQNsxKlby6782X0o78rYhCHrcDnHgRtyMGvX9ovK3XTt6M7p6i9SKaRgBWIOFVPygxv15iJesqt9cng==',
    status: 'approved',
    uuid: '996221c0-b7a7-0133-7c06-0e67b818e6fb'
  },
  headers: {
    host: 'foo.bar',
    'x-authy-signature': 'hqB6las54sMBA83GKs0U1QQi9ocJ2tH20SXHZNzfqqQ=',
    'x-authy-signature-nonce': 1455825429
  },
  method: 'POST',
  protocol: 'https',
  url: '/'
});

console.log('Approval request callback is valid');
Using promises
client.verifyCallback({
  body: {
    approval_request: {
      expiration_timestamp: 1455911778,
      logos: null,
      transaction: {
        created_at_time: 1455825378,
        customer_uuid: '2ccf0040-ed25-0132-5987-0e67b818e6fb',
        details: {},
        device_details: null,
        device_geolocation: null,
        device_signing_time: 0,
        encrypted: false,
        flagged: false,
        hidden_details: {},
        message: '.',
        reason: null,
        requester_details: null,
        status: 'approved',
        uuid: '996201c0-b7a7-0133-7c06-0e67b818e6fb'
      }
    },
    authy_id: 1234567,
    callback_action: 'approval_request_status',
    device_uuid: '4d89c320-a9bb-0133-7c02-0e67b818e6fb',
    signature: 'BObhJgZwgU7O9r4Uo9VT6j6shAOe7y/IRGpW/N0Uq34/XHZU9E+aHOI5rcQzW1ZgNCECzVrqrsnjhYEK4Zq1naKWu0YNkuvILmMz8IxJEQH+c+6x186fjIjxvP4nu4p/pfUDomo/za24s1XOjtNlVsrDTDXClHUh5MjFQbyBjhFd8gOtmGVatN7K2Lx71I8YR2JDLbRX4DlJEMu++PLBn1nqQH9tbNYzX5jjX87CXPBtDfRwfWSs/imnfZ9zkDq4ZKuBcuwzQNsxKlby6782X0o78rYhCHrcDnHgRtyMGvX9ovK3XTt6M7p6i9SKaRgBWIOFVPygxv15iJesqt9cng==',
    status: 'approved',
    uuid: '996221c0-b7a7-0133-7c06-0e67b818e6fb'
  },
  headers: {
    host: 'foo.bar',
    'x-authy-signature': 'hqB6las54sMBA83GKs0U1QQi9ocJ2tH20SXHZNzfqqQ=',
    'x-authy-signature-nonce': 1455825429
  },
  method: 'POST',
  protocol: 'https',
  url: '/'
}).then(function(response) {
  console.log('Approval request callback is valid');
})
.catch(function(error) {
  throw error;
});
Using callbacks
client.verifyCallback({
  body: {
    approval_request: {
      expiration_timestamp: 1455911778,
      logos: null,
      transaction: {
        created_at_time: 1455825378,
        customer_uuid: '2ccf0040-ed25-0132-5987-0e67b818e6fb',
        details: {},
        device_details: null,
        device_geolocation: null,
        device_signing_time: 0,
        encrypted: false,
        flagged: false,
        hidden_details: {},
        message: '.',
        reason: null,
        requester_details: null,
        status: 'approved',
        uuid: '996201c0-b7a7-0133-7c06-0e67b818e6fb'
      }
    },
    authy_id: 1234567,
    callback_action: 'approval_request_status',
    device_uuid: '4d89c320-a9bb-0133-7c02-0e67b818e6fb',
    signature: 'BObhJgZwgU7O9r4Uo9VT6j6shAOe7y/IRGpW/N0Uq34/XHZU9E+aHOI5rcQzW1ZgNCECzVrqrsnjhYEK4Zq1naKWu0YNkuvILmMz8IxJEQH+c+6x186fjIjxvP4nu4p/pfUDomo/za24s1XOjtNlVsrDTDXClHUh5MjFQbyBjhFd8gOtmGVatN7K2Lx71I8YR2JDLbRX4DlJEMu++PLBn1nqQH9tbNYzX5jjX87CXPBtDfRwfWSs/imnfZ9zkDq4ZKuBcuwzQNsxKlby6782X0o78rYhCHrcDnHgRtyMGvX9ovK3XTt6M7p6i9SKaRgBWIOFVPygxv15iJesqt9cng==',
    status: 'approved',
    uuid: '996221c0-b7a7-0133-7c06-0e67b818e6fb'
  },
  headers: {
    host: 'foo.bar',
    'x-authy-signature': 'hqB6las54sMBA83GKs0U1QQi9ocJ2tH20SXHZNzfqqQ=',
    'x-authy-signature-nonce': 1455825429
  },
  method: 'POST',
  protocol: 'https',
  url: '/'
}, function(err, res) {
  if (err) throw err;

  console.log('Approval request callback is valid');
});

Tests

To test using a local installation of node.js:

npm test

To test using Docker exclusively:

docker-compose run --rm sut

Release

npm version [<newversion> | major | minor | patch] -m "Release %s"

License

MIT

More Repositories

1

google-libphonenumber

The up-to-date and reliable Google's libphonenumber package for node.js.
JavaScript
1,379
star
2

bitcoin-core

A modern Bitcoin Core REST and RPC client.
JavaScript
478
star
3

docker-bitcoin-core

A bitcoin-core docker image
Dockerfile
363
star
4

yubikey-handbook

A collection of guidelines, use cases and experiments with the Yubikey
341
star
5

gsts

Obtain and store AWS STS credentials to interact with Amazon services by authenticating via G Suite SAML.
JavaScript
216
star
6

docker-openvpn-monitor

The trusted multi-platform web-based OpenVPN Monitor docker image.
Dockerfile
100
star
7

little-snitch-rules

Rule groups for easy subscriptions for Little Snitch 4.1+
60
star
8

sql-tag

A template tag for writing elegant parameterized SQL queries based on ES2015 tagged template literals
JavaScript
36
star
9

iterm2-city-lights

A City Lights theme for iTerm2 with focus in mind using a gorgeous dark atmosphere.
34
star
10

mota

A Shelly device firmware updater based on zeroconf (or bonjour) discovery for local networks using their built-in Over-The-Air update interface. It is suited for network setups where IoT devices do not have internet connectivity.
Go
31
star
11

url-escape-tag

A template tag for escaping url parameters based on ES2015 tagged templates
JavaScript
14
star
12

docker-openzwave

An OpenZWave docker image with the OpenZWave Control Panel built-in.
Dockerfile
11
star
13

home-assistant-config

🔧🏡 My home automation configuration for Home Assistant
8
star
14

docker-z-way

A Z-Way server docker image.
Dockerfile
7
star
15

docker-miflora-mqtt

Run the miflora-mqtt-daemon in Docker using dynamic environment variables (x86 + ARM support).
Dockerfile
6
star
16

karma-should

Use should.js with karma tests
JavaScript
5
star
17

atlas-scientific-ph-probe-calibration-esp8266

An ESP8266 program for calibrating Atlas Scientific pH Probes interactively
C++
4
star
18

home-assistant-mosquitto-config

🔧 🐞 A mosquitto config for integrating with Home Assistant's MQTT component.
4
star
19

docker-mosquitto

A mosquitto docker image.
Shell
4
star
20

dotfiles

dotfiles that give your computer personality.
Shell
2
star
21

defaults-deep-safe

A deep version of _.defaults, safe by default
JavaScript
2
star
22

co-authy

[DEPRECATED] An Authy client based on generators
JavaScript
2
star
23

package-list

A thin wrapper around npm to list installed packages during runtime.
JavaScript
1
star
24

educabiz-gallery-downloader

Automate photo gallery downloads on the Educabiz platform
JavaScript
1
star
25

isoc

A list of country names and codes as published by the ISO 3166-1 standard
JavaScript
1
star
26

libphonenumber-hook

💆‍♂️A companion serverless function for automatically keeping google-libphonenumber up-to-date with the latest upstream releases.
Go
1
star
27

macOS-scripts

A collection of AppleScripts to automate tasks in different macOS applications.
AppleScript
1
star
28

nsq-dogstatsd

An utility that lets you graph nsq stats on Datadog by sending custom metrics via DogStatsD
Go
1
star
29

homebrew-tap

🍻 Homebrew tap for some of my open source projects
Ruby
1
star
30

brother-mobile-cable-label-downloader

Use industrial-grade telecom, datacom and/or electrical identifications on your consumer-grade Brother label printer.
JavaScript
1
star
31

sequelize-sql-tag

A template tag for writing elegant parameterized SQL queries based on ES2015 tagged template literals using Sequelize
JavaScript
1
star