Core Boxx – One Time Password Module

This is a simple one-time password module for Core Boxx – With a predefined reactions table, library, and API. Simply plug this one into Core Boxx to add a new security measure.

TABLE OF CONTENTS

Download & Notes

Quick Reference

LICENSE & DOWNLOAD

Core Boxx is released under the MIT License. You are free to use it for personal and commercial projects, modify as you see fit. On the condition that the software is provided “as-is”. There are no warranties provided and “no strings attached”. Code Boxx and the authors are not liable for any claims, damages, or liabilities.

Download Core Boxx OTP Module | GitHub | Source Forge

INSTALLATION & REQUIREMENTS

• Download and set up the “Main Core Boxx” if you have not already done so.
• Import lib/SQL-otp.sql into your database.
• The user module and mail module must be installed.

ONE TIME PASSWORD TABLE

OTP LIBRARY FUNCTIONS

echo $_CORE->OTP->generate("jon@doe.com");
 ? "OTP sent to email" : $_CORE->error;

if ($_CORE->OTP->challenge("jon@doe.com", "123456") {
  // PROCEED TO DO YOUR SECURE STUFF
} else { echo $_CORE->error; }

OTP API FUNCTIONS

Accessible at http://yoursite.com/api/otp/REQUEST/. These are pretty much a replica of the above library functions, except in REST API format. Feel free to delete api/API-otp.php if you don’t intend to integrate an API.

QUICK DEVELOPMENT NOTES

• There are 2 demo pages in this module –
  • PAGE-otp-one.php Step 1, generates and sends an OTP to the user’s email.
  • PAGE-otp-two.php Step 2, where the user enters the OTP for verification.
• Please edit LIB-OTP.php – Set the email templates to your own, and also what happens when the user receives too many strikes.