Add totp scanner

Author: lakhansamani

example/package-lock.json

@@ -48,7 +48,7 @@
     }
   ],
   "devDependencies": {
-    "@babel/core": "^7.20.2",
+    "@babel/core": "^7.23.2",
     "@size-limit/preset-small-lib": "^8.1.0",
     "@types/react": "^18.0.25",
     "@types/react-dom": "^18.0.9",
@@ -61,10 +61,10 @@
     "rollup-plugin-postcss": "^4.0.2",
     "size-limit": "^8.1.0",
     "tsdx": "^0.14.1",
-    "tslib": "^2.4.1",
-    "typescript": "^4.9.3"
+    "tslib": "^2.6.2",
+    "typescript": "^5.2.2"
   },
   "dependencies": {
-    "@authorizerdev/authorizer-js": "^1.2.6"
+    "@authorizerdev/authorizer-js": "^1.2.14"
   }
 }

package-lock.json

@@ -8,15 +8,26 @@ import { StyledButton, StyledFooter, StyledLink } from '../styledComponents';
 import { isValidEmail } from '../utils/validations';
 import { Message } from './Message';
 import { AuthorizerVerifyOtp } from './AuthorizerVerifyOtp';
-import { OtpDataType } from '../types';
+import { OtpDataType, TotpDataType } from '../types';
+import { AuthorizerTOTPScanner } from './AuthorizerTOTPScanner';
 
 const initOtpData: OtpDataType = {
   isScreenVisible: false,
   email: '',
+  phone_number: '',
+};
+
+const initTotpData: TotpDataType = {
+  isScreenVisible: false,
+  email: '',
+  phone_number: '',
+  authenticator_scanner_image: '',
+  authenticator_secret: '',
+  authenticator_recovery_codes: [],
 };
 
 interface InputDataType {
-  email: string | null;
+  email_or_phone_number: string | null;
   password: string | null;
 }
 
@@ -29,12 +40,13 @@ export const AuthorizerBasicAuthLogin: FC<{
   const [error, setError] = useState(``);
   const [loading, setLoading] = useState(false);
   const [otpData, setOtpData] = useState<OtpDataType>({ ...initOtpData });
+  const [totpData, setTotpData] = useState<TotpDataType>({ ...initTotpData });
   const [formData, setFormData] = useState<InputDataType>({
-    email: null,
+    email_or_phone_number: null,
     password: null,
   });
   const [errorData, setErrorData] = useState<InputDataType>({
-    email: null,
+    email_or_phone_number: null,
     password: null,
   });
   const { setAuthData, config, authorizerRef } = useAuthorizer();
@@ -48,7 +60,8 @@ export const AuthorizerBasicAuthLogin: FC<{
     setLoading(true);
     try {
       const data: LoginInput = {
-        email: formData.email || '',
+        email: formData.email_or_phone_number || '',
+        phone_number: formData.email_or_phone_number || '',
         password: formData.password || '',
       };
       if (urlProps?.scope) {
@@ -63,11 +76,34 @@ export const AuthorizerBasicAuthLogin: FC<{
       }
 
       const res = await authorizerRef.login(data);
-
-      if (res && res?.should_show_email_otp_screen) {
+      // if totp is enabled for the first time show totp screen with scanner
+      if (
+        res &&
+        res.should_show_totp_screen &&
+        res.authenticator_scanner_image &&
+        res.authenticator_secret &&
+        res.authenticator_recovery_codes
+      ) {
+        setTotpData({
+          isScreenVisible: true,
+          email: data.email || ``,
+          phone_number: data.phone_number || ``,
+          authenticator_scanner_image: res.authenticator_scanner_image,
+          authenticator_secret: res.authenticator_secret,
+          authenticator_recovery_codes: res.authenticator_recovery_codes,
+        });
+        return;
+      }
+      if (
+        res &&
+        (res?.should_show_email_otp_screen ||
+          res?.should_show_mobile_otp_screen ||
+          res?.should_show_totp_screen)
+      ) {
         setOtpData({
           isScreenVisible: true,
-          email: data.email,
+          email: data.email || ``,
+          phone_number: data.phone_number || ``,
         });
         return;
       }
@@ -101,14 +137,23 @@ export const AuthorizerBasicAuthLogin: FC<{
   };
 
   useEffect(() => {
-    if (formData.email === '') {
-      setErrorData({ ...errorData, email: 'Email is required' });
-    } else if (formData.email && !isValidEmail(formData.email)) {
-      setErrorData({ ...errorData, email: 'Please enter valid email' });
+    if (formData.email_or_phone_number === '') {
+      setErrorData({
+        ...errorData,
+        email_or_phone_number: 'Email OR Phone Number is required',
+      });
+    } else if (
+      formData.email_or_phone_number &&
+      !isValidEmail(formData.email_or_phone_number)
+    ) {
+      setErrorData({
+        ...errorData,
+        email_or_phone_number: 'Please enter valid email',
+      });
     } else {
-      setErrorData({ ...errorData, email: null });
+      setErrorData({ ...errorData, email_or_phone_number: null });
     }
-  }, [formData.email]);
+  }, [formData.email_or_phone_number]);
 
   useEffect(() => {
     if (formData.password === '') {
@@ -118,12 +163,39 @@ export const AuthorizerBasicAuthLogin: FC<{
     }
   }, [formData.password]);
 
-  return otpData.isScreenVisible ? (
-    <AuthorizerVerifyOtp
-      {...{ setView, onLogin, email: otpData.email }}
-      urlProps={urlProps}
-    />
-  ) : (
+  if (totpData.isScreenVisible) {
+    return (
+      <AuthorizerTOTPScanner
+        {...{
+          setView,
+          onLogin,
+          email: totpData.email || ``,
+          phone_number: totpData.phone_number || ``,
+          authenticator_scanner_image: totpData.authenticator_scanner_image,
+          authenticator_secret: totpData.authenticator_secret,
+          authenticator_recovery_codes:
+            totpData.authenticator_recovery_codes || [],
+        }}
+        urlProps={urlProps}
+      />
+    );
+  }
+
+  if (otpData.isScreenVisible) {
+    return (
+      <AuthorizerVerifyOtp
+        {...{
+          setView,
+          onLogin,
+          email: otpData.email || ``,
+          phone_number: otpData.phone_number || ``,
+        }}
+        urlProps={urlProps}
+      />
+    );
+  }
+
+  return (
     <>
       {error && (
         <Message type={MessageType.Error} text={error} onClose={onErrorClose} />
@@ -138,19 +210,23 @@ export const AuthorizerBasicAuthLogin: FC<{
               <span>* </span>Email
             </label>
             <input
-              name="email"
-              id="authorizer-login-email"
+              name="email_or_phone_number"
+              id="authorizer-login-email-or-phone-number"
               className={`${styles['form-input-field']} ${
-                errorData.email ? styles['input-error-content'] : null
+                errorData.email_or_phone_number
+                  ? styles['input-error-content']
+                  : null
               }`}
-              placeholder="eg. foo@bar.com"
-              type="email"
-              value={formData.email || ''}
-              onChange={(e) => onInputChange('email', e.target.value)}
+              placeholder="eg. foo@bar.com / +919999999999"
+              type="text"
+              value={formData.email_or_phone_number || ''}
+              onChange={(e) =>
+                onInputChange('email_or_phone_number', e.target.value)
+              }
             />
-            {errorData.email && (
+            {errorData.email_or_phone_number && (
               <div className={styles['form-input-error']}>
-                {errorData.email}
+                {errorData.email_or_phone_number}
               </div>
             )}
           </div>
@@ -182,9 +258,9 @@ export const AuthorizerBasicAuthLogin: FC<{
           <StyledButton
             type="submit"
             disabled={
-              !!errorData.email ||
+              !!errorData.email_or_phone_number ||
               !!errorData.password ||
-              !formData.email ||
+              !formData.email_or_phone_number ||
               !formData.password ||
               loading
             }

package.json

@@ -0,0 +1,79 @@
+import React, { FC, useState } from 'react';
+import { StyledButton } from '../styledComponents';
+import { ButtonAppearance, Views } from '../constants';
+import { AuthorizerVerifyOtp } from './AuthorizerVerifyOtp';
+
+export const AuthorizerTOTPScanner: FC<{
+  setView?: (v: Views) => void;
+  onLogin?: (data: any) => void;
+  email?: string;
+  phone_number?: string;
+  urlProps?: Record<string, any>;
+  authenticator_scanner_image: string;
+  authenticator_secret: string;
+  authenticator_recovery_codes: string[];
+}> = ({
+  setView,
+  onLogin,
+  email,
+  phone_number,
+  authenticator_scanner_image,
+  authenticator_secret,
+  authenticator_recovery_codes,
+  urlProps,
+}) => {
+  const [isOTPScreenVisisble, setIsOTPScreenVisisble] =
+    useState<boolean>(false);
+
+  const handleContinue = () => {
+    setIsOTPScreenVisisble(true);
+  };
+
+  if (isOTPScreenVisisble) {
+    <AuthorizerVerifyOtp
+      {...{
+        setView,
+        onLogin,
+        email,
+        phone_number,
+        urlProps,
+      }}
+    />;
+  }
+
+  return (
+    <>
+      <p style={{ margin: '10px 0px', fontWeight: 'bold' }}>
+        Scan the QR code or enter the secret key into your authenticator app.
+      </p>
+      <img
+        src={`data:image/jpeg;base64,${authenticator_scanner_image}`}
+        alt="scanner"
+      />
+      <p style={{ margin: '10px 0px' }}>
+        If you are unable to scan the QR code, please enter the secret key
+        manually.
+      </p>
+      <p style={{ margin: '10px 0px', fontWeight: 'bold' }}>
+        {authenticator_secret}
+      </p>
+      <p style={{ margin: '10px 0px' }}>
+        If you lose access to your authenticator app, you can use the recovery
+        codes below to regain access to your account. Please save these codes
+        safely and do not share them with anyone.
+      </p>
+      <ul>
+        {authenticator_recovery_codes.map((code, index) => {
+          return <li key={index}>{code}</li>;
+        })}
+      </ul>
+      <StyledButton
+        type="button"
+        appearance={ButtonAppearance.Primary}
+        onClick={handleContinue}
+      >
+        Continue
+      </StyledButton>
+    </>
+  );
+};

src/components/AuthorizerBasicAuthLogin.tsx

@@ -15,9 +15,10 @@ interface InputDataType {
 export const AuthorizerVerifyOtp: FC<{
   setView?: (v: Views) => void;
   onLogin?: (data: any) => void;
-  email: string;
+  email?: string;
+  phone_number?: string;
   urlProps?: Record<string, any>;
-}> = ({ setView, onLogin, email, urlProps }) => {
+}> = ({ setView, onLogin, email, phone_number, urlProps }) => {
   const [error, setError] = useState(``);
   const [successMessage, setSuccessMessage] = useState(``);
   const [loading, setLoading] = useState(false);
@@ -29,6 +30,11 @@ export const AuthorizerVerifyOtp: FC<{
     otp: null,
   });
   const { authorizerRef, config, setAuthData } = useAuthorizer();
+  useEffect(() => {
+    if (!email && !phone_number) {
+      setError(`Email or Phone Number is required`);
+    }
+  }, []);
 
   const onInputChange = async (field: string, value: string) => {
     setFormData({ ...formData, [field]: value });
@@ -129,7 +135,7 @@ export const AuthorizerVerifyOtp: FC<{
         <Message type={MessageType.Error} text={error} onClose={onErrorClose} />
       )}
       <p style={{ textAlign: 'center', margin: '10px 0px' }}>
-        Please enter the OTP you received on your email address.
+        Please enter the OTP sent to your email or phone number or authenticator
       </p>
       <br />
       <form onSubmit={onSubmit} name="authorizer-mfa-otp-form">

src/components/AuthorizerTOTPScanner.tsx

@@ -60,5 +60,15 @@ export type AuthorizerContextPropsType = {
 
 export type OtpDataType = {
   isScreenVisible: boolean;
-  email: string;
+  email?: string;
+  phone_number?: string;
+};
+
+export type TotpDataType = {
+  isScreenVisible: boolean;
+  email?: string;
+  phone_number?: string;
+  authenticator_scanner_image: string;
+  authenticator_secret: string;
+  authenticator_recovery_codes: string[];
 };