AC-10982::[2FA] Integrate with Duo Web SDK to support Universal Prompt-fixes for SVC failures

Author: glo05363

TwoFactorAuth/Api/Data/DuoDataInterface.php

@@ -0,0 +1,97 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+
+namespace Magento\TwoFactorAuth\Api\Data;
+
+use Magento\Framework\Api\ExtensibleDataInterface;
+
+/**
+ * Represents the data needed to use duo
+ *
+ * @deprecated This interface is no longer used.
+ * @see none
+ * @api
+ */
+interface DuoDataInterface extends ExtensibleDataInterface
+{
+    /**
+     * Signature field name
+     *
+     * @deprecated
+     * @see none
+     */
+    public const SIGNATURE = 'signature';
+
+    /**
+     * Api host field name
+     *
+     * @deprecated
+     * @see none
+     */
+    public const API_HOSTNAME = 'api_hostname';
+
+    /**
+     * Get the signature
+     *
+     * @deprecated
+     * @see none
+     * @return string
+     */
+    public function getSignature(): string;
+
+    /**
+     * Set the signature
+     *
+     * @deprecated
+     * @see none
+     * @param string $value
+     * @return void
+     */
+    public function setSignature(string $value): void;
+
+    /**
+     * Set the api hostname
+     *
+     * @deprecated
+     * @see none
+     * @param string $value
+     * @return void
+     */
+    public function setApiHostname(string $value): void;
+
+    /**
+     * Get the api hostname
+     *
+     * @deprecated
+     * @see none
+     * @return string
+     */
+    public function getApiHostname(): string;
+
+    /**
+     * Retrieve existing extension attributes object or create a new one
+     *
+     * Used fully qualified namespaces in annotations for proper work of extension interface/class code generation
+     *
+     * @deprecated
+     * @see none
+     * @return \Magento\TwoFactorAuth\Api\Data\DuoDataExtensionInterface|null
+     */
+    public function getExtensionAttributes(): ?DuoDataExtensionInterface;
+
+    /**
+     * Set an extension attributes object
+     *
+     * @deprecated
+     * @see none
+     * @param \Magento\TwoFactorAuth\Api\Data\DuoDataExtensionInterface $extensionAttributes
+     * @return void
+     */
+    public function setExtensionAttributes(
+        DuoDataExtensionInterface $extensionAttributes
+    ): void;
+}

TwoFactorAuth/Api/DuoAuthenticateInterface.php

@@ -1,29 +1,62 @@
 <?php
 /**
- * Copyright 2020 Adobe
- * All Rights Reserved.
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
  */
 
 declare(strict_types=1);
 
 namespace Magento\TwoFactorAuth\Api;
 
+use Magento\TwoFactorAuth\Api\Data\DuoDataInterface;
+
 /**
  * Represents authentication for the duo security provider
  *
  * @api
  */
 interface DuoAuthenticateInterface
 {
+    /**
+     * Get the information required to configure duo
+     *
+     * @deprecated this method is deprecated and will be removed in a future release.
+     * @see none
+     * @param string $username
+     * @param string $password
+     * @return \Magento\TwoFactorAuth\Api\Data\DuoDataInterface
+     */
+    public function getAuthenticateData(
+        string $username,
+        string $password
+    ): DuoDataInterface;
+
     /**
      * Authenticate and get an admin token
      *
+     * @deprecated this method is deprecated and will be removed in a future release.
+     * @see createAdminAccessTokenWithCredentialsAndPasscode
+     *
      * @param string $username
      * @param string $password
-     * @param string $passcode
+     * @param string $signatureResponse
      * @return string
      */
     public function createAdminAccessTokenWithCredentials(
+        string $username,
+        string $password,
+        string $signatureResponse
+    ): string;
+
+    /**
+     * Authenticate and get an admin token with passcode
+     *
+     * @param string $username
+     * @param string $password
+     * @param string $passcode
+     * @return string
+     */
+    public function createAdminAccessTokenWithCredentialsAndPasscode(
         string $username,
         string $password,
         string $passcode

TwoFactorAuth/Api/DuoConfigureInterface.php

@@ -1,27 +1,53 @@
 <?php
 /**
- * Copyright 2020 Adobe
- * All Rights Reserved.
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
  */
 
 declare(strict_types=1);
 
 namespace Magento\TwoFactorAuth\Api;
 
+use Magento\TwoFactorAuth\Api\Data\DuoDataInterface;
+
 /**
  * Represents configuration for the duo security provider
  *
  * @api
  */
 interface DuoConfigureInterface
 {
+    /**
+     * Get the information required to configure duo
+     *
+     * @deprecated this method is deprecated and will be removed in a future release.
+     * @see getDuoConfigurationData
+     *
+     * @param string $tfaToken
+     * @return \Magento\TwoFactorAuth\Api\Data\DuoDataInterface
+     */
+    public function getConfigurationData(
+        string $tfaToken
+    ): DuoDataInterface;
+
+    /**
+     * Activate the provider and get an admin token
+     *
+     * @deprecated this method is deprecated and will be removed in a future release.
+     * @see duoActivate
+     * @param string $tfaToken
+     * @param string $signatureResponse
+     * @return void
+     */
+    public function activate(string $tfaToken, string $signatureResponse): void;
+
     /**
      * Configure duo for first time user
      *
      * @param string $tfaToken
      * @return void
      */
-    public function getConfigurationData(
+    public function getDuoConfigurationData(
         string $tfaToken
     );
 
@@ -31,5 +57,5 @@ public function getConfigurationData(
      * @param string $tfaToken
      * @return void
      */
-    public function activate(string $tfaToken): void;
+    public function duoActivate(string $tfaToken): void;
 }

TwoFactorAuth/Model/Data/Provider/Engine/DuoSecurity/Data.php

@@ -0,0 +1,85 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+declare(strict_types=1);
+
+namespace Magento\TwoFactorAuth\Model\Data\Provider\Engine\DuoSecurity;
+
+use Magento\Framework\Model\AbstractExtensibleModel;
+use Magento\TwoFactorAuth\Api\Data\DuoDataExtensionInterface;
+
+/**
+ * This class was originally implementing Magento\TwoFactorAuth\Api\Data\DuoDataInterface.
+ * It no longer implements the interface but maintains backward compatibility.
+ * Represents the data needed to authenticate with duo
+ */
+class Data extends AbstractExtensibleModel
+{
+    /**
+     * Signature field name
+     */
+    public const SIGNATURE = 'signature';
+
+    /**
+     * Api host field name
+     */
+    public const API_HOSTNAME = 'api_hostname';
+
+    /**
+     * @inheritDoc
+     */
+    public function getSignature(): string
+    {
+        return (string)$this->getData(self::SIGNATURE);
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function setSignature(string $value): void
+    {
+        $this->setData(self::SIGNATURE, $value);
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function getApiHostname(): string
+    {
+        return (string)$this->getData(self::API_HOSTNAME);
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function setApiHostname(string $value): void
+    {
+        $this->setData(self::API_HOSTNAME, $value);
+    }
+
+    /**
+     * Retrieve existing extension attributes object or create a new one
+     *
+     * Used fully qualified namespaces in annotations for proper work of extension interface/class code generation
+     *
+     * @return \Magento\TwoFactorAuth\Api\Data\DuoDataExtensionInterface|null
+     */
+    public function getExtensionAttributes(): ?DuoDataExtensionInterface
+    {
+        return $this->getData(self::EXTENSION_ATTRIBUTES_KEY);
+    }
+
+    /**
+     * Set an extension attributes object
+     *
+     * @param \Magento\TwoFactorAuth\Api\Data\DuoDataExtensionInterface $extensionAttributes
+     * @return void
+     */
+    public function setExtensionAttributes(DuoDataExtensionInterface $extensionAttributes): void
+    {
+        $this->setData(self::EXTENSION_ATTRIBUTES_KEY, $extensionAttributes);
+    }
+}