X-Git-Url: http://git.pjr.cc/?p=ga4php.git;a=blobdiff_plain;f=authserver%2Fwww%2Findex.php;h=bcd1fb449fba805adae33430697778f4858c0302;hp=723163a172f8943c5460a0c6a148cb16edf39c1a;hb=39d98e8248f340408cc824f50c98c92d6405aa92;hpb=fd3cf37febb90cd50fc43ac694f10c21d45e4dbe
diff --git a/authserver/www/index.php b/authserver/www/index.php
index 723163a..bcd1fb4 100644
--- a/authserver/www/index.php
+++ b/authserver/www/index.php
@@ -2,9 +2,75 @@
require_once("user_actions.php");
+// first check for a token retreival
+if(isset($_REQUEST["gettoken"])) {
+ $username = $_REQUEST["username"];
+ $otkid = $_REQUEST["otkid"];
+ $users = $myAC->getUsers();
+ $realname = "";
+ $otk = "";
+ foreach($users as $user) {
+ if($user["username"] == $username) {
+ $realname = $user["realname"];
+ $otk = $user["otk"];
+ }
+ }
+
+ if($realname == "") $realname = $username;
+ if($otk == "") {
?>
-
Welcome to the GAAS User Self Admin Site
+Hello , we're sorry, but your One Time Key has already been picked up or you
+dont currently have a token. If you believe this in error, please contact the site admin immediately
+as it could mean your key has been compromised.
+
+
+
+Hello , we're sorry, but your One Time Key ID is not
+the correct one, the URL you have been sent may be in error, please check with the site admin
+
+
+
+Hello , welcome to the One Time Key retreival site. Here is your
+One Time Key. Do not save this anywhere as it will compromise your account
+ Point your phones camera at the screen
+ Watch the display until it locks onto the code
+ Once the code has been scanned, the phone should return to the Google Authenticator with a 6 digit number presented, or a "get code" button.
+
+
+Once you have the key, you may try logging into the user site here
+
+
+
+Hello , welcome to the One Time Key retreival site. Before we present
+your key, you must have your phone ready to accept it as the key will only be presented once.
+If your phone is not ready to accept the key, the key needs to be regenerated, so only proceed
+if you phone is on, you have clicked on "scan account barcode" and the phone is ready to
+scan, please proceed.
+
+If you are ready to proceed, click here.
+
+
+
+Welcome to the GAAS User Site
Login Failure";