Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 3:30 pm

All times are UTC + 1 hour

Post new topic Reply to topic  [ 2 posts ] 
Author Message
PostPosted: Sat Jul 11, 2009 2:17 pm 

Joined: Sat Jul 11, 2009 2:12 pm
Posts: 1
I am using the java web services client code to do OTP verification against api.yubico.com. This all works fine but I would like to do two-factor authentication with the web services API like it can be done through the demo's on yubico.com.
How can we do this through web services - this is for a demo setup? Looking at the API it doesn't seem possible?!
However, my uid and password are stored in the database at yubico.com should something should be possible?

Thanks, Rene.

Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Wed Jul 15, 2009 9:28 am 

Joined: Sat Jun 27, 2009 4:13 pm
Posts: 5
As I understand it, the web service only provides one-factor authentication. That is that they verify the key that the user enters.

However, you can always extract the public ID from the users input (only the last 32 characters is the generated OTP, the remaining characters are the public ID). Together with this public ID, you can store password, pincode, email-verification etc, and use the public ID to lookup and authenticate the second factor yourself!

Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ] 

All times are UTC + 1 hour

Who is online

Users browsing this forum: No registered users and 0 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group