.. | |||
.htaccess | 1 year ago | ||
README.md | 1 year ago | ||
otp-cgi.html | 1 year ago | ||
otp-cgi.js | 1 year ago | ||
otp-cgi.rb | 1 year ago | ||
otp.css | 1 year ago | ||
otp.html | 1 year ago | ||
otp.js | 1 year ago | ||
otp.rb | 1 year ago | ||
persession.png | 1 year ago | ||
userdb.rb | 1 year ago | ||
web.rb | 1 year ago | ||
wsserver.png | 1 year ago |
auth=Authentication, tmp=Temporary
Client | Data Flow | Server | Person |
---|---|---|---|
(First Access) | Nothing | ||
Username(email) | --> | (store) | |
(storage) | <-- | tmpKey | |
.. | passcode | --> get via email | |
Passcode+tmpKey | --> | Verify | |
(storage) | <-- | SessionKey | |
Sessionkey | --> | Set AuthFlag for connection channel |
All keys and passcodes are stored in databases(server side) or localStorage(browsers).
Client | Data Flow | Server | Person |
---|---|---|---|
Username(email) | --> | (store) | |
(storage) | <-- | tmpKey | |
.. | passcode | --> get via email | |
.. | exits | ||
.. | ------- | ||
Passcode+tmpKey | --> | Verify | |
(storage) | <-- | SessionKey | |
.. | exits | ||
.. | ------- | ||
User+Sessionkey | --> | Auth OK | |
(expand to view) | <-- | Any answers | |
.. | exits | ||
.. | ------- |
One response for one request
Persist connection per session.
One server for multi clients.