Yubikey support: plugins/yubikey/yubikey.js@03d6287d4a8b (annotated)

Mercurial Mercurial > repos > yubikey / annotate

summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help

plugins/yubikey/yubikey.js

author	Dan
	Fri, 18 Dec 2009 19:29:33 -0500
changeset 35	03d6287d4a8b
parent 30	294bab0bb3e2
permissions	-rw-r--r--

Modified yubifields in forms to show the OTP prefix; modified some strings

0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	1	// sample OTP:
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	2	// ttttvvvvvvcurikvhjcvnlnbecbkubjvuittbifhndhn
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	3	// charset: cbdefghijklnrtuv
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	4
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	5	var yk_interval = false;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	6
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	7	var YK_SEC_NORMAL_USERNAME = 1;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	8	var YK_SEC_NORMAL_PASSWORD = 2;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	9	var YK_SEC_ELEV_USERNAME = 4;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	10	var YK_SEC_ELEV_PASSWORD = 8;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	11
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	12	var yubikey_otp_current = false;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	13
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	14	function yk_mb_init(fieldid, statid)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	15	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	16	load_component(['messagebox', 'fadefilter', 'flyin', 'jquery', 'jquery-ui', 'l10n']);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	17	var mp = miniPrompt(yk_mb_construct);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	18	if ( typeof(fieldid) == 'function' )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	19	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	20	var input = mp.getElementsByTagName('input')[0];
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	21	input.submit_func = fieldid;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	22	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	23	else if ( fieldid && statid )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	24	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	25	var input = mp.getElementsByTagName('input')[0];
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	26	input.yk_field_id = fieldid;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	27	input.yk_status_id = statid;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	28	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	29	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	30
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	31	function yk_mb_construct(mp)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	32	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	33	mp.innerHTML = '';
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	34	mp.style.textAlign = 'center';
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	35	mp.innerHTML = '<h3>' + $lang.get('yubiauth_msg_please_touch_key') + '</h3>';
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	36	var progress = document.createElement('div');
30 294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	37	$(progress).addClass('yubikey_bar').css('text-align', 'left');
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	38	var progimg = document.createElement('img');
4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	39	progimg.src = cdnPath + '/images/spacer.gif';
4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	40	progress.appendChild(progimg);
4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	41	mp.appendChild(progress);
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	42	var ta = document.createElement('input');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	43	ta.submitted = false;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	44	$(ta)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	45	.css('background-color', 'transparent')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	46	.css('border-width', '0px')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	47	.css('color', '#fff')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	48	.css('font-size', '1px')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	49	.css('padding', '0')
30 294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	50	.css('opacity', '0')
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	51	.attr('size', '1')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	52	.keyup(function(e)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	53	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	54	if ( e.keyCode == 27 )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	55	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	56	window.clearInterval(yk_interval);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	57	miniPromptDestroy(this);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	58	}
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	59	// 0.3: submit only upon a keycode 13
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	60	else if ( e.keyCode == 13 )
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	61	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	62	this.submitted = true;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	63	yk_handle_submit(this);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	64	}
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	65	else
4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	66	{
4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	67	$('div.yubikey_bar > img', this.parentNode)
4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	68	.css('width', String(this.value.length * 2) + 'px')
30 294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	69	//.css('background-position', String((this.value.length > 44 ? 44 : this.value.length) - 44) + 'px -88px');
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	70	}
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	71	e.preventDefault();
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	72	e.stopPropagation();
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	73	});
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	74	mp.appendChild(ta);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	75	setTimeout(function()
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	76	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	77	window.yk_interval = setInterval(function()
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	78	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	79	ta.focus();
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	80	}, 50);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	81	}, 750);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	82	var info = document.createElement('p');
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	83	$(info)
30 294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	84	.append('<span style="color: #ffffff; font-size: smaller;">' + $lang.get('yubiauth_msg_close_instructions') + '</span>  ')
294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	85	.append('<a class="abutton abutton_green" href="#" onclick="miniPromptDestroy(this); return false;">' + $lang.get('etc_cancel') + '</a>  ')
294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	86	//.append('<br />')
294bab0bb3e2 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center Dan parents: 28 diff changeset	87	.append('<span style="color: #909090; font-size: smaller;">' + $lang.get('yubiauth_msg_close_instructions') + '</span>')
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	88	.css('margin-top', '0');
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	89	mp.appendChild(info);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	90	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	91
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	92	function yk_handle_submit(ta)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	93	{
7 c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	94	if ( ta.value.length > 44 \|\| !ta.value.match(/^[cbdefghijklnrtuv]+$/) )
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	95	{
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	96	// report "invalid characters"
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	97	setTimeout(function()
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	98	{
7 c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	99	var parent = ta.parentNode;
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	100	var tabackup = {
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	101	field_id: ta.yk_field_id,
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	102	status_id: ta.yk_status_id,
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	103	submit_func: ta.submit_func
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	104	};
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	105	yk_mb_construct(parent);
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	106	var input = parent.getElementsByTagName('input')[0];
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	107	if ( tabackup.field_id )
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	108	input.yk_field_id = tabackup.field_id;
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	109	if ( tabackup.status_id )
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	110	input.yk_status_id = tabackup.status_id;
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	111	if ( tabackup.submit_func )
c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	112	input.submit_func = tabackup.submit_func;
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	113	}, 1000);
7 c8fc1493eacd Fixed a few issues with input postprocessing in client API Dan parents: 6 diff changeset	114	$('h3', ta.parentNode).text($lang.get(ta.value.length > 44 ? 'yubiauth_msg_too_long' : 'yubiauth_msg_invalid_chars'));
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	115	$('div.yubikey_bar > img', this.parentNode).addClass('yubikey_bar_error');
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	116	return false;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	117	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	118
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	119	window.clearInterval(yk_interval);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	120
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	121	if ( ta.yk_field_id && ta.yk_status_id )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	122	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	123	var field = document.getElementById(ta.yk_field_id);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	124	var status = document.getElementById(ta.yk_status_id);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	125	if ( $(status).hasClass('empty') \|\| $(status).hasClass('rmpending') )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	126	{
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	127	$(status)
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	128	.next('span.yubikey_pubkey')
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	129	.text(ta.value.substr(0, 12))
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	130	.next('a.yubikey_enroll')
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	131	.text($lang.get('yubiauth_ctl_btn_change_key'))
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	132	.addClass('abutton_green')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	133	.after(' <a class="abutton abutton_red yubikey_enroll" href="#yk_clear" onclick="yk_clear(\'' + ta.yk_field_id + '\', \'' + ta.yk_status_id + '\'); return false;">'
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	134	+ $lang.get('yubiauth_ctl_btn_clear') +
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	135	'</a>');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	136	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	137	$(status).removeClass('empty').removeClass('enrolled').removeClass('rmpending').addClass('savepending').html($lang.get('yubiauth_ctl_status_enrolled_pending'));
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	138	$(status).next('span.yubikey_pubkey').text(ta.value.substr(0, 12));
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	139	field.value = ta.value;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	140	miniPromptDestroy(ta);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	141	return true;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	142	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	143	else if ( ta.submit_func )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	144	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	145	ta.submit_func(ta);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	146	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	147	else
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	148	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	149	miniPromptDestroy(ta);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	150	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	151	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	152
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	153	function yk_login_validate_reqs(ta)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	154	{
6 4f85ab095cc8 Added visual feedback for key entry Dan parents: 0 diff changeset	155	$(ta.parentNode).remove('p');
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	156	yubikey_otp_current = ta.value;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	157
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	158	miniPromptDestroy(ta, true);
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	159
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	160	if ( logindata )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	161	{
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	162	if ( logindata.mb_object )
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	163	{
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	164	// login window is open
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	165	if ( user_level == USER_LEVEL_GUEST )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	166	{
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	167	// for guests, get the user's yubikey auth flags
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	168	// we're still ok to submit, so make sure twofactor isn't enabled
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	169	// as we are a guest, we have to get the flags for the user from the server
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	170	var ajax = ajaxMakeXHR();
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	171	var uri = makeUrlNS('Special', 'Yubikey', 'get_flags=' + ta.value.substr(0, 12));
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	172	var flags = 0;
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	173	try
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	174	{
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	175	ajax.open('GET', uri, false);
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	176	ajax.send(null);
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	177
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	178	if ( ajax.readyState == 4 && ajax.status == 200 )
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	179	{
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	180	// we got it
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	181	var response = String(ajax.responseText + '');
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	182	if ( check_json_response(response) )
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	183	{
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	184	response = parseJSON(response);
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	185	flags = response.flags \|\| 0;
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	186	}
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	187	}
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	188	}
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	189	catch ( e )
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	190	{
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	191	ajaxLoginSetStatus(AJAX_STATUS_ERROR);
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	192	return false;
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	193	}
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	194	var show_username = flags & YK_SEC_NORMAL_USERNAME;
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	195	var show_password = flags & YK_SEC_NORMAL_PASSWORD;
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	196	}
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	197	else
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	198	{
18 dd8c53454f31 Yubikey flags are no longer fetched from server at login time, instead provided with load Dan parents: 17 diff changeset	199	var show_username = window.yk_user_flags & YK_SEC_ELEV_USERNAME;
dd8c53454f31 Yubikey flags are no longer fetched from server at login time, instead provided with load Dan parents: 17 diff changeset	200	var show_password = window.yk_user_flags & YK_SEC_ELEV_PASSWORD;
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	201	}
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	202	if ( !show_username )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	203	$('#ajax_login_field_username').parent('td').hide().prev().hide();
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	204	if ( !show_password )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	205	$('#ajax_login_field_password').parent('td').hide().prev().hide();
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	206
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	207	var can_submit = true;
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	208	if ( show_username && !$('#ajax_login_field_username').attr('value') )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	209	{
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	210	$('#ajax_login_field_username').focus();
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	211
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	212	if ( !show_password )
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	213	$('#ajax_login_field_username').keyup(function(e)
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	214	{
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	215	// assign press of Enter in username field to submit
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	216	if ( e.keyCode == 13 )
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	217	{
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	218	$('#messageBoxButtons input:button:first').click();
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	219	}
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	220	});
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	221
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	222	can_submit = false;
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	223	}
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	224	if ( show_password && !$('#ajax_login_field_password').attr('value') )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	225	{
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	226	if ( can_submit )
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	227	{
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	228	// can_submit only true if show_username false
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	229	$('#ajax_login_field_password').focus();
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	230	}
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	231	can_submit = false;
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	232	}
17 e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	233
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	234	if ( can_submit )
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	235	{
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	236	$('#messageBoxButtons input:button:first').click();
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	237	}
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	238	}
e04c0f64e972 SECURITY (critical): If username provided, any Yubikey could be used to log in. Dan parents: 12 diff changeset	239	}
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	240	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	241
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	242	function yk_clear(field_id, status_id)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	243	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	244	var field = document.getElementById(field_id);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	245	var status = document.getElementById(status_id);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	246
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	247	var was_pending = $(field).hasClass('wasempty');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	248
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	249	$(field).attr('value', '');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	250	$(status)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	251	.removeClass('savepending')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	252	.removeClass('enrolled')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	253	.addClass( was_pending ? 'empty' : 'rmpending' )
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	254	.text( was_pending ? $lang.get('yubiauth_ctl_status_empty') : $lang.get('yubiauth_ctl_status_remove_pending') )
35 03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	255	.next('span.yubikey_pubkey')
03d6287d4a8b Modified yubifields in forms to show the OTP prefix; modified some strings Dan parents: 30 diff changeset	256	.text('')
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	257	.next('a')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	258	.text($lang.get('yubiauth_ctl_btn_enroll'))
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	259	.removeClass('abutton_green')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	260	.next('a')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	261	.remove();
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	262	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	263
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	264	addOnloadHook(function()
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	265	{
24 ba1a31f16afe Disabled JS login hook for iPhone Safari Dan parents: 23 diff changeset	266	if ( is_iPhone )
ba1a31f16afe Disabled JS login hook for iPhone Safari Dan parents: 23 diff changeset	267	// kinda can't plug a yubikey into an iPhone
ba1a31f16afe Disabled JS login hook for iPhone Safari Dan parents: 23 diff changeset	268	// ... yet?
ba1a31f16afe Disabled JS login hook for iPhone Safari Dan parents: 23 diff changeset	269	return;
ba1a31f16afe Disabled JS login hook for iPhone Safari Dan parents: 23 diff changeset	270
25 2e7ccbdfdc0a SECURITY: Added recognition for lockouts Dan parents: 18 diff changeset	271	attachHook('login_build_form', 'yk_login_dlg_hook(table, data);');
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	272	attachHook('login_build_userinfo', 'if ( window.yubikey_otp_current ) userinfo.yubikey_otp = window.yubikey_otp_current;');
12 6faa838e4433 Whoops! That load_component was needed in prefs page Dan parents: 11 diff changeset	273	if ( title == namespace_list.Special + 'Preferences/Yubikey' )
6faa838e4433 Whoops! That load_component was needed in prefs page Dan parents: 11 diff changeset	274	{
6faa838e4433 Whoops! That load_component was needed in prefs page Dan parents: 11 diff changeset	275	load_component(['jquery', 'jquery-ui', 'expander']);
6faa838e4433 Whoops! That load_component was needed in prefs page Dan parents: 11 diff changeset	276	}
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	277	});
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	278
25 2e7ccbdfdc0a SECURITY: Added recognition for lockouts Dan parents: 18 diff changeset	279	function yk_login_dlg_hook(table, data)
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	280	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	281	window.yubikey_otp_current = false;
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	282	var tr = document.createElement('tr');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	283	var td = document.createElement('td');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	284	$(td)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	285	.attr('colspan', '2')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	286	.css('text-align', 'center')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	287	.css('font-size', 'smaller')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	288	.css('font-weight', 'bold')
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	289	.html('<a href="#" onclick="yk_mb_init(yk_login_validate_reqs); return false;" style="color: #6fa202">' + $lang.get('yubiauth_btn_enter_otp') + '</a>');
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	290	$('a', td).blur(function(e)
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	291	{
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	292	$('#messageBoxButtons input:button:first').focus();
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	293	$('#ajax_login_field_captcha').focus();
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	294	});
25 2e7ccbdfdc0a SECURITY: Added recognition for lockouts Dan parents: 18 diff changeset	295	if ( ( window.yk_reg_require_otp \|\| window.yk_user_enabled ) && !data.locked_out.locked_out )
9 65965da01c41 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt Dan parents: 7 diff changeset	296	{
65965da01c41 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt Dan parents: 7 diff changeset	297	setTimeout(function()
65965da01c41 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt Dan parents: 7 diff changeset	298	{
65965da01c41 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt Dan parents: 7 diff changeset	299	yk_mb_init(yk_login_validate_reqs);
65965da01c41 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt Dan parents: 7 diff changeset	300	}, 750);
65965da01c41 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt Dan parents: 7 diff changeset	301	}
0 9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	302	tr.appendChild(td);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	303	table.appendChild(tr);
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	304	}
9d2c4f04a0d0 First commit! Hoping everything works. Dan parents: diff changeset	305

Yubikey support