duo-cli/duo_activate.py

#!/usr/bin/env python3

import pyotp
import requests
import base64
import json
import sys

if len(sys.argv) < 2:
    print("Usage: python duo_activate.py <url to duo qr>")
    sys.exit()

qr_url = sys.argv[1]

host = 'api-%s' % (qr_url.split('/')[2].split('-')[1],)
code = qr_url.rsplit('/qr?value=',1)[1].split('-')[0]

url = 'https://{host}/push/v2/activation/{code}?customer_protocol=1'.format(host=host, code=code)
print("url", url)
headers = {'User-Agent': 'okhttp/2.7.5'}
data = {'jailbroken': 'false',
        'architecture': 'armv7',
        'region': 'NL',
        'app_id': 'com.duosecurity.duomobile',
        'full_disk_encryption': 'true',
        'passcode_status': 'true',
        'platform': 'Android',
        'app_version': '3.29.1',
        'app_build_number': '329101',
        'version': '10.0',
        'manufacturer': 'unknown',
        'language': 'en',
        'model': 'Command line',
        'security_patch_level': '2019-10-01'}

r = requests.post(url, headers=headers, data=data)
response = json.loads(r.text)

try:
  secret = base64.b32encode(response['response']['hotp_secret'].encode("UTF-8"))
except KeyError:
  print(response)
  sys.exit(1)

print("secret", secret)

f = open('duotoken.hotp', 'w')
f.write(secret.decode("UTF-8"))
f.write("\n0")
f.close()

with open('response.json', 'w') as resp:
    resp.write(r.text)
Python 3 support 2019-03-20 10:41:31 +00:00			`#!/usr/bin/env python3`
Cleanup and built a barebones command line interface 2018-12-02 01:30:08 +00:00
Init 2017-05-15 12:54:22 +00:00			`import pyotp`
			`import requests`
			`import base64`
			`import json`
			`import sys`

			`if len(sys.argv) < 2:`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`print("Usage: python duo_activate.py <url to duo qr>")`
Python 3 support 2019-03-20 10:41:31 +00:00			`sys.exit()`
Init 2017-05-15 12:54:22 +00:00
			`qr_url = sys.argv[1]`

Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`host = 'api-%s' % (qr_url.split('/')[2].split('-')[1],)`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`code = qr_url.rsplit('/qr?value=',1)[1].split('-')[0]`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00
			`url = 'https://{host}/push/v2/activation/{code}?customer_protocol=1'.format(host=host, code=code)`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`print("url", url)`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`headers = {'User-Agent': 'okhttp/2.7.5'}`
			`data = {'jailbroken': 'false',`
			`'architecture': 'armv7',`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`'region': 'NL',`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`'app_id': 'com.duosecurity.duomobile',`
			`'full_disk_encryption': 'true',`
			`'passcode_status': 'true',`
			`'platform': 'Android',`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`'app_version': '3.29.1',`
			`'app_build_number': '329101',`
			`'version': '10.0',`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`'manufacturer': 'unknown',`
			`'language': 'en',`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`'model': 'Command line',`
			`'security_patch_level': '2019-10-01'}`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00
			`r = requests.post(url, headers=headers, data=data)`
Init 2017-05-15 12:54:22 +00:00			`response = json.loads(r.text)`

Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`try:`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`secret = base64.b32encode(response['response']['hotp_secret'].encode("UTF-8"))`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`except KeyError:`
Python 3 support 2019-03-20 10:41:31 +00:00			`print(response)`
Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`sys.exit(1)`
Init 2017-05-15 12:54:22 +00:00
Python 3 support 2019-03-20 10:41:31 +00:00			`print("secret", secret)`
Cleanup and built a barebones command line interface 2018-12-02 01:30:08 +00:00
			`f = open('duotoken.hotp', 'w')`
Fix filename in argument example. Change URL format to Duo's new QR code format. Update device details to be a bit more descriptive and more recent versions. Fix Python 3 support. Remove functionality to generate tokens on activation. 2019-10-02 21:52:50 +00:00			`f.write(secret.decode("UTF-8"))`
			`f.write("\n0")`
Cleanup and built a barebones command line interface 2018-12-02 01:30:08 +00:00			`f.close()`

Update activation code. The duo activation process has changed, the server now expects way more information from the client as well as a new URL scheme. Make the server happy, provide some fake data. Save server response as a response.json file for later use. Sanity check response, abort if no secret was passed. 2019-03-19 23:51:29 +00:00			`with open('response.json', 'w') as resp:`
			`resp.write(r.text)`