/usr/share/weblogin/generic/templates/multifactor.tmpl is in webauth-weblogin 4.7.0-3build1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 | <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<http-equiv="pragma" content="no-cache">
<title>WebAuth Multifactor</title>
</head>
[% IF notdefined %]
<!--
This is the template for the WebAuth multifactor page. This page is called
from login.fcgi script on the weblogin server after a successful
authentication that has come back signaling that multifactor authentication
is also required. Variables used:
factor_type : type of multifactor being used (o1, o2, etc)
default_device : the default device ID
default_factor : the default second factor
devices : array of devices (name, id, and factors as keys)
username : the authenticated identity of the user
login_cancel : a cancel URL was specified
cancel_url : the specified cancel URL
multifactor_sentauth : the form was submitted to run the sendauth function
error : some error occurred
err_multifactor_missing : the form was submitted previously without an OTP
err_multifactor_invalid : could not validate a submitted OTP
remember_login : set if single sign-on cookies should be generated
user_message : raw HTML returned by the user information service
You may customize this file however you wish for your site.
The authors hereby relinquish any claim to any copyright that they may
have in this work, whether granted under contract or by operation of law
or international treaty, and hereby commit to the public, at large, that
they shall not, at any time in the future, seek to enforce any copyright
in this work against any person or entity, or prevent any person or
entity from copying, publishing, distributing or creating derivative
works of this work.
-->
[% END %]
<body onload="document.login.otp.focus();">
<h1 align="center">WebAuth Multifactor</h1>
[% IF error || user_message %]
<div class="error" align="center">
[% IF user_message %][% user_message %][% END %]
<p><strong>
[% IF err_multifactor_missing %]
<!-- Error: no OTP submitted. -->
Error: Enter a one-time password.
[% END %]
[% IF err_multifactor_invalid && !user_message %]
<!-- Error: login failed. -->
Error: You entered an incorrect one-time password.
[% END %]
</strong></p>
[% IF error %]
<p>Click <a href="/help.html">help</a> for assistance.</p>
[% END %]
</div>
[% END %]
<div class="loginbox" align="center">
<table border="1" width="70%">
<tr>
<td><img alt="Login" src="/images/login.png"
width="160" height="160"/></td>
<td>
<div class="loginform">
[% IF factor_type == "o2" %]
<p>Your multifactor setup requires us to send you a password
via a configured interface to verify your identity. Please
click the following button to send the message to the
source you have on file.</p>
<form name="multifactor_send"
action="[% script_name FILTER html %]"
method="post"
enctype="application/x-www-form-urlencoded">
<input type="hidden" name="rm" value="multifactor_sendauth">
<input type="submit" name="Submit" value="Send OTP">
<input type="hidden" name="RT"
value="[% RT FILTER html %]">
<input type="hidden" name="ST"
value="[% ST FILTER html %]">
<input type="hidden" name="LS"
value="[% LS FILTER html %]">
<input type="hidden" name="username"
value="[% username FILTER html %]">
<input type="hidden" name="factor_type"
value="[% factor_type FILTER html %]">
<input type="hidden" name="remember_login"
value="[% remember_login FILTER html %]">
</form>
[% IF multifactor_sentauth %]
<p><strong>You have sent an OTP to your configured device.
Once you receive it, please enter the code into the
following field.</strong></p>
[% END %]
[% END %]
<form name="multifactor_login"
action="[% script_name FILTER html %]"
method="post" autocomplete="OFF"
enctype="application/x-www-form-urlencoded">
<input type="hidden" name="rm" value="multifactor">
<input type="hidden" name="RT"
value="[% RT FILTER html %]">
<input type="hidden" name="ST"
value="[% ST FILTER html %]">
<input type="hidden" name="LS"
value="[% LS FILTER html %]">
<input type="hidden" name="username"
value="[% username FILTER html %]">
<input type="hidden" name="factor_type"
value="[% factor_type FILTER html %]">
<input type="hidden" name="remember_login"
value="[% remember_login FILTER html %]">
[% IF factor_type == "o2" && multifactor_sentauth %]
<input type="hidden" name="multifactor_sentauth" value="1">
[% END %]
<table>
<tr>
<td><strong>One-Time Password (OTP):</strong></td>
<td><input name="otp" type="text"
value=""
size="10"><br/></td>
</tr>
<tr>
<td colspan="2" align="right">
<input type="submit" name="Submit" value="Login">
</td>
</tr>
</table>
</form>
<p>Default device: [% default_device FILTER html %]<br />
Default factor: [% default_factor FILTER html %]</p>
[% IF devices.size %]
<ul>
[% FOREACH device in devices %]
<li>[% device.name FILTER html %]
([% device.id FILTER html %]) supporting
[% FOREACH factor in device.factors %]
[% factor FILTER html %]
[% END %]</li>
[% END %]
</ul>
[% END %]
</div>
<div class="loginlinks">
<a href="/help.html">help</a>
[% IF login_cancel %]
<!-- The WebAuth Server has a cancel url.-->
<a href="[% cancel_url FILTER html %]">cancel</a>
[% END %]
</div>
</td>
</tr>
</table>
</div>
<div class="trailer">
<h2>Caution:</h2>
<p>Never enter your WebAuth one-time password on a web page
unless the page is a page directly served by the WebAuth login
server.</p>
</div>
</body>
</html>
|