Guardian.java

Java library for Auth0's Guardian platform.

MIT License

Stars
4
View Code on GitHub
Ecosystems: Auth0

Guardian Java

Java library for Auth0's Guardian platform.

Download

Get Guardian Java via Maven:

<dependency>
  <groupId>com.auth0</groupId>
  <artifactId>guardian</artifactId>
  <version>0.3.1</version>
</dependency>

or Gradle:

implementation 'com.auth0:guardian:0.3.1'

Usage

Create an instance of Guardian using your Guardian URL:

Guardian guardian = new Guardian("https://<tenant>.guardian.auth0.com");

Obtain an enrollment ticket from API2:

String enrollmentTicket = "Ag1qX7vZVBvyTKhFwrkzaCH2M8vn5b6c";

Enrollment

TOTP

Use the ticket and EnrollmentType.TOTP() to request an TOTP enrollment. For TOTP you must ask for the TOTP URI to show to the user in the QR code.

Transaction enrollmentTransaction;
try {
    enrollmentTransaction = guardian
            .requestEnroll(enrollmentTicket, EnrollmentType.TOTP());

    // Only for TOTP: use the TOTP URI to create a QR and scan with an app
    String totpURI = enrollmentTransaction.totpURI("Username", "Issuer");
    System.out.println(totpURI);

} catch (IOException e) {
    // connection issue, might be internet (or invalid certificates for example)
} catch (GuardianException e) {
    if (e.isAlreadyEnrolled()) {
        // the user was already enrolled
    } else if (e.isInvalidToken()) {
        // the ticket is not valid anymore, or was already used
    } else {
        // some other guardian error, check the message
    }
}

SMS

For SMS use EnrollmentType.SMS() and the phone number instead:

Transaction enrollmentTransaction;
try {
    enrollmentTransaction = guardian
            .requestEnroll(enrollmentTicket, EnrollmentType.SMS("+549XXXXXXXX58"));

} catch (IOException e) {
    // connection issue, might be internet (or invalid certificates for example)
} catch (GuardianException e) {
    if (e.isAlreadyEnrolled()) {
        // the user was already enrolled
    } else if (e.isInvalidToken()) {
        // the ticket is not valid anymore, or was already used
    } else {
        // some other guardian error, check the message
    }
}

Transaction storage

Transaction implements java.io.Serializable interface so you can save and restore it easily.

The transaction contains sensitive information like the transaction token and the recovery code. Keep in mind this when considering possible storage options.

Confirm enrollment

Restore the enrollment transaction from wherever you saved it, and use it together with the OTP that the user inputs to confirm the enrollment, whether it's TOTP or SMS.

If the OTP was valid, the enrollment is confirmed and you get an object that contains the recovery code.

// get the OTP from SMS or TOTP app
String code = "123456";

try {
    Enrollment enrollment = guardian.confirmEnroll(enrollmentTransaction, code);

    // Get the recovery code and show to the user
    String recoveryCode = enrollment.getRecoveryCode();
    System.out.println(recoveryCode);

} catch (IOException e) {
    // connection issue, might be internet (or invalid certificates for example)
} catch (GuardianException e) {
    if (e.isInvalidToken()) {
        // the transaction is not valid anymore
    } else if (e.isInvalidOTP()) {
        // the OTP is not valid
    } else {
        // some other guardian error, check the message
    }
}

Documentation

For more information about auth0 check our documentation page.

What is Auth0?

Auth0 helps you to:

  • Add authentication with multiple authentication sources, either social like Google, Facebook, Microsoft Account, LinkedIn, GitHub, Twitter, Box, Salesforce, amont others, or enterprise identity systems like Windows Azure AD, Google Apps, Active Directory, ADFS or any SAML Identity Provider.
  • Add authentication through more traditional username/password databases.
  • Add support for linking different user accounts with the same user.
  • Support for generating signed Json Web Tokens to call your APIs and flow the user identity securely.
  • Analytics of how, when and where users are logging in.
  • Pull data from other sources and add it to the user profile, through JavaScript rules.

Create a free Auth0 Account

  1. Go to Auth0 and click Sign Up.
  2. Use Google, GitHub or Microsoft Account to login.

Issue Reporting

If you have found a bug or if you have a feature request, please report them at this repository issues section. Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.

Author

Auth0

License

This project is licensed under the MIT license. See the LICENSE file for more info.

Package Rankings
Top 36.12% on Repo1.maven.org
Badges
Extracted from project README
CircleCI MIT Maven JCenter codecov
Related Projects
Guardian.swift

Swift toolkit for Auth0 Guardian API

05 Aug 2016 9
Guardian.Android

Android toolkit for Auth0 Guardian API

10 Jun 2016 5
JWTDecode.Android

A library to help you decode JWTs for Android

17 Oct 2016 440
jwks-rsa-java

JSON Web Key Set parser library

03 Aug 2016 194
auth0-java

Java client library for the Auth0 platform

07 Jan 2016 290
java-jwt

Java implementation of JSON Web Token (JWT)

07 Mar 2014 5,875
Authing

đŸ”¥Authing - IDaaS/IAM solution that can Auth to web and mobile applications.

14 Jan 2018 1,009
react-native-auth0

React Native toolkit for Auth0 API

14 Jun 2016 466
ngx-auth

Auth0 platform implementation and JWT authentication utility for Angular & Angular Universal

26 Aug 2017 58
Lock-SmartLock

Google Smart Lock support for Auth0 Lock

30 May 2015 15
auth0-java-mvc-common

Contains common helper classes and api client logic that are used across our Java MVC libraries

08 Aug 2016 43
idtoken-verifier

Lightweight RSA JWT verification

29 Dec 2016 75
auth0-spring-security-api

Spring Security integration with Auth0 to secure your API with JWTs

14 Jun 2018 77
angular-lock

WebJar for angular-lock

04 Aug 2016 18
react-native-auth0-guardian

Auth0 Guardian React Native (iOS & Android)

07 Jan 2020 9