sil-org
diff --git a/‎dictionaries/mfa.definition.json‎
Lines changed: 24 additions & 0 deletions b/‎dictionaries/mfa.definition.json‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎themes/material/mfa/prompt-for-mfa-backupcode.php‎
Lines changed: 1 addition & 1 deletion b/‎themes/material/mfa/prompt-for-mfa-backupcode.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎themes/material/mfa/prompt-for-mfa-totp.php‎
Lines changed: 1 addition & 1 deletion b/‎themes/material/mfa/prompt-for-mfa-totp.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎themes/material/mfa/prompt-for-mfa-u2f.php‎
Lines changed: 149 additions & 0 deletions b/‎themes/material/mfa/prompt-for-mfa-u2f.php‎
Lines changed: 149 additions & 0 deletions
@@ -60,6 +60,24 @@
 		"fr": "TODO",
 		"ko": "TODO"
 	},
+	"u2f_header": {
+		"en": "Security key",
+		"es": "TODO",
+		"fr": "TODO",
+		"ko": "TODO"
+	},
+	"u2f_icon": {
+		"en": "USB key icon",
+		"es": "TODO",
+		"fr": "TODO",
+		"ko": "TODO"
+	},
+	"u2f_instructions": {
+		"en": "You may now insert your security key and press its button.",
+		"es": "TODO",
+		"fr": "TODO",
+		"ko": "TODO"
+	},
 	"shield_icon": {
 		"en": "Shield icon",
 		"es": "TODO",
@@ -120,6 +138,12 @@
 		"fr": "TODO",
 		"ko": "TODO"
 	},
+	"button_try_again": {
+		"en": "Try again",
+		"es": "TODO",
+		"fr": "TODO",
+		"ko": "TODO"
+	},
 	"remember_this": {
 		"en": "Remember this computer for 30 days",
 		"es": "TODO",
 
@@ -68,7 +68,7 @@
                 </div>
 
                 <script>
-                    ga('send','event','error','backupcode', <?= $message ?>');
+                    ga('send','event','error','backupcode', '<?= $message ?>');
                 </script>
                 <?php
                 }
 
@@ -68,7 +68,7 @@
                 </div>
 
                 <script>
-                    ga('send','event','error','totp', <?= $message ?>');
+                    ga('send','event','error','totp', '<?= $message ?>');
                 </script>
                 <?php
                 }
 
@@ -0,0 +1,149 @@
+<!DOCTYPE html>
+<html>
+<head>
+    <title><?= $this->t('{material:mfa:title}') ?></title>
+
+    <?php include __DIR__ . '/../common-head-elements.php' ?>
+
+    <script src="/module.php/material/mfa-u2f-api.js"></script>
+    <script>
+        function verifyU2f() {
+            // TODO: need feature sniff and error handling
+            var u2fSignRequest = <?= json_encode($this->data['mfaOption']['data']) ?> || {};
+
+            u2f.sign(u2fSignRequest.appId, u2fSignRequest.challenge, [u2fSignRequest],
+                     handleU2fResponse);
+        }
+
+        function handleU2fResponse(u2fResponse) {
+            if (u2fResponse.errorCode && u2fResponse.errorCode != 0) {
+                return handleError(u2fResponse);
+            }
+
+            submitForm(u2fResponse);
+        }
+
+        function handleError(u2fResponse) {
+            var message = u2fResponse.errorMessage ||
+                          Object.keys(u2f.ErrorCodes)[u2fResponse.errorCode];
+
+            var errorNode = document.querySelector('p.error');
+
+            errorNode.classList.add('show');
+            errorNode.querySelector('span').textContent = message;
+
+            offerRetry();
+        }
+
+        function offerRetry() {
+            var retryButton = document.querySelector('.mdl-button.mdl-color-text--red');
+
+            retryButton.classList.add('show');
+        }
+
+        function submitForm(u2fResponse) {
+            var form = document.querySelector('form');
+            var submissionInput  = createHiddenInput('submitMfa');
+            var u2fResponseInput = createHiddenInput('mfaSubmission');
+
+            u2fResponseInput.value = JSON.stringify(u2fResponse);
+
+            form.appendChild(submissionInput);
+            form.appendChild(u2fResponseInput);
+
+            form.submit();
+        }
+
+        function createHiddenInput(name) {
+            var input = document.createElement('input');
+
+            input.type = 'hidden';
+            input.name = name;
+
+            return input;
+        }
+    </script>
+</head>
+<body class="gradient-bg" onload="verifyU2f()">
+<div class="mdl-layout mdl-layout--fixed-header fill-viewport">
+    <header class="mdl-layout__header">
+        <div class="mdl-layout__header-row">
+            <span class="mdl-layout-title">
+                <?= $this->t('{material:mfa:header}') ?>
+            </span>
+        </div>
+    </header>
+    <main class="mdl-layout__content" layout-children="column">
+        <form layout-children="column" method="POST">
+            <?php
+            foreach ($this->data['formData'] as $name => $value) {
+            ?>
+            <input type="hidden" name="<?= htmlentities($name); ?>"
+                   value="<?= htmlentities($value); ?>"/>
+            <?php
+            }
+            ?>
+            <div class="mdl-card mdl-shadow--8dp">
+                <div class="mdl-card__media white-bg margin" layout-children="column">
+                    <img src="/module.php/material/mfa-u2f.png"
+                         alt="<?= $this->t('{material:mfa:u2f_icon}') ?>">
+                </div>
+
+                <div class="mdl-card__title center">
+                    <h1 class="mdl-card__title-text">
+                        <?= $this->t('{material:mfa:u2f_header}') ?>
+                    </h1>
+                </div>
+
+                <div class="mdl-card__title center" >
+                    <p class="mdl-card__subtitle-text">
+                        <?= $this->t('{material:mfa:u2f_instructions}') ?>
+                    </p>
+                </div>
+
+                <?php
+                $message = $this->data['errorMessage'];
+
+                if (! empty($message)) {
+                ?>
+                <script>
+                    ga('send','event','error','u2f', '<?= $message ?>');
+                </script>
+                <?php
+                }
+                ?>
+                <div class="mdl-card__supporting-text"
+                     layout-children="column">
+                    <p class="mdl-color-text--red error  <?= empty($message) ? 'hide' : 'show' ?>">
+                        <i class="material-icons">error</i>
+
+                        <span class="mdl-typography--caption">
+                            <?= htmlentities($message) ?>
+                        </span>
+                    </p>
+                </div>
+
+                <div class="mdl-card__actions" layout-children="row">
+                    <span flex></span>
+                    <!-- used input instead of button to avoid form submission on click -->
+                    <input type="button" onclick="verifyU2f()"
+                           class="mdl-button mdl-color-text--red hide"
+                           value="<?= $this->t('{material:mfa:button_try_again}') ?>">
+
+                </div>
+            </div>
+
+            <div>
+                <label class="mdl-checkbox mdl-js-checkbox mdl-js-ripple-effect">
+                    <span class="mdl-checkbox__label">
+                        <?= $this->t('{material:mfa:remember_this}') ?>
+                    </span>
+                    <input type="checkbox" name="rememberMe" value="true" checked
+                           class="mdl-checkbox__input"/>
+                </label>
+            </div>
+        </form>
+    </main>
+</div>
+</body>
+</html>
Original file line number	Diff line number	Diff line change
`@@ -68,7 +68,7 @@`
`68`	`68`	`</div>`
`69`	`69`
`70`	`70`	`<script>`
`71`		`- ga('send','event','error','backupcode', <?= $message ?>');`
	`71`	`+ ga('send','event','error','backupcode', '<?= $message ?>');`
`72`	`72`	`</script>`
`73`	`73`	`<?php`
`74`	`74`	`}`