srp-protocol

DEVICE_PASSWORD_VERIFIER challenge response in Amazon Cognito using boto3 and warrant

浪子不回头ぞ 提交于 2020-05-27 13:09:15
问题 I'm using both the boto3 and warrant libraries to try to get a device authenticated to skip multi-factor authentication after it's been recognized. I've got through a user/password auth but can't seem to figure out the right way to authenticate the device. The following is my code: from warrant import aws_srp from warrant.aws_srp import AWSSRP import boto3 client = boto3.client('cognito-idp') import datetime username='xxx' password='xxx' client_id='xxx' aws = AWSSRP(username=username,

DEVICE_PASSWORD_VERIFIER challenge response in Amazon Cognito using boto3 and warrant

爷,独闯天下 提交于 2020-05-27 13:07:45
问题 I'm using both the boto3 and warrant libraries to try to get a device authenticated to skip multi-factor authentication after it's been recognized. I've got through a user/password auth but can't seem to figure out the right way to authenticate the device. The following is my code: from warrant import aws_srp from warrant.aws_srp import AWSSRP import boto3 client = boto3.client('cognito-idp') import datetime username='xxx' password='xxx' client_id='xxx' aws = AWSSRP(username=username,

Cognito UnknownError after turn on device registration

♀尐吖头ヾ 提交于 2020-01-03 08:28:26
问题 As per requirement, I need to turn on device registration to Always . However, our SRP flow starts failing with the below issue. { code: 'UnknownError', message: 'Unknown error, the response body from fetch is: undefined' } After doing some research, I found one similar post, but it seems like the only solution is to turn device registration off. It's failing while running node get-token.js script to retrieve token for our CI/CD testing pipeline. cognitoUser.authenticateUser(authCfg, {

AWS Cognito user authentication Missing required parameter SRP_A

南笙酒味 提交于 2019-12-29 08:56:32
问题 I am trying to use AWS Cognito services for user authentication through ruby SDK. I could able to sign_up, confirm sign_up process using the methods resp = client.sign_up({ client_id: "ClientIdType", secret_hash: "SecretHashType", username: "UsernameType", password: "PasswordType", user_attributes: [{ name:"AttributeNameType", value: "AttributeValueType", }], validation_data: [{ name: "AttributeNameType", value: "AttributeValueType", }] }) and confirm_sign_up using resp = client.confirm_sign

different Session Keys in SRP6a

|▌冷眼眸甩不掉的悲伤 提交于 2019-12-24 07:19:47
问题 i tried to use implementing of srp6 spr4net (https://code.google.com/p/srp4net/) in my solution. So, i rewrited client side from javascript to C# to my WinForm App. And wondered, that session keys just doesn't match! I tried all day long to work it out, but without result. here is my srp6a implementation: #region SRP6a client side // a - ephemeral private key // a = random between 2 and N-1 var a = new BigInteger(); { a.genRandomBits(Crypto.SRP.N.bitCount(), new Random()); if (a >= Crypto.SRP

implementing USER_SRP_AUTH with python boto3 for AWS Cognito

淺唱寂寞╮ 提交于 2019-11-30 18:33:08
Amazon provides iOS, Android, and Javascript Cognito SDKs that offer a high-level authenticate-user operation. For example, see Use Case 4 here: https://github.com/aws/amazon-cognito-identity-js However, if you are using python/boto3, all you get are a pair of primitives: cognito.initiate_auth and cognito.respond_to_auth_challenge . I am trying to use these primitives along with the pysrp lib authenticate with the USER_SRP_AUTH flow, but what I have is not working. It always fails with "An error occurred (NotAuthorizedException) when calling the RespondToAuthChallenge operation: Incorrect

implementing USER_SRP_AUTH with python boto3 for AWS Cognito

痴心易碎 提交于 2019-11-30 03:18:58
问题 Amazon provides iOS, Android, and Javascript Cognito SDKs that offer a high-level authenticate-user operation. For example, see Use Case 4 here: https://github.com/aws/amazon-cognito-identity-js However, if you are using python/boto3, all you get are a pair of primitives: cognito.initiate_auth and cognito.respond_to_auth_challenge . I am trying to use these primitives along with the pysrp lib authenticate with the USER_SRP_AUTH flow, but what I have is not working. It always fails with "An