search

OpenWilma / parsing

Guidelines on how to parse Wilma HTML/JSON
1 stars 0 forks source link

Documentation on Wilma 2FA auth #1

Open developerfromjokela opened 4 years ago

developerfromjokela commented 4 years ago

Wilma has OTP built-in. kuva

Here's HTML source code:


<input type="hidden" id="mfa-formkey" value="passwd:56:e41c76b9c3a1917b5c2118613ebc67f4">

Dialog is not here. It's unnecessary.

Actual checking of that 2fa code is a POST request to: https://<wilmaserver>/api/v1/accounts/me/mfa/otp/check Post Data:

Failed response:

{
   "error":{
      "statusCode":400,
      "internalErrorCode":"mfa-001",
      "message":"Virheellinen kysely",
      "description":"Virheelliset parametrit"
   }
}

Invalid code response:

{"statusCode":200,"payload":{"success":false}}

Successful code response:

{"statusCode":200,"payload":{"success":true}}

After successul response, we can do Wilma requests as typically we do

developerfromjokela commented 2 years ago

MFA is now properly implemented, should be on included in wiki