/ DevOps Zone
Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

About the Authy 2FA Automated Testing Framework

DZone's Guide to

About the Authy 2FA Automated Testing Framework

Testing the two-factor authentication functionality of your system is just as important in testing any other part. The Authy 2FA framework can help automate that testing.

by
Marcelo Jabali
·
Feb. 21, 17 · DevOps Zone
Free Resource

Comment (0)

Save
Tweet
{{ articles[0].views | formatCount}} Views

The Nexus Suite is uniquely architected for a DevOps native world and creates value early in the development pipeline, provides precise contextual controls at every phase, and accelerates DevOps innovation with automation you can trust. Read how in this ebook.

When developing a system that provides two-factor authentication capabilities, it's always nice to see things working in unit or functional testing. However, when running automated integrated tests isn't an easy task, as it might be dependent on other factors, like sending and receiving SMS messages.

With that in mind, we have created an extensible framework for you to test your applications being deployed with Authy OneCode and Authy Phone Verification for the delivery of the one-time passwords and tokens via SMS.

The framework can be found here. It's completely free and open source. 

Some of the tasks that the 2FA Automated Testing Framework is able to help you with are:

  • Acquire a new Twilio number (or use an existing one).

  • Set up a webhook URL for the Twilio number to forward the SMS messages generated and delivered by Authy OneCode and/or Authy phone verification. You can also set the framework to poll for SMS messages on your Twilio number.

  • Register the Twilio phone number and create a new user with the Authy service.

  • Use the Authy One Code and/or Authy Phone Verification API to trigger an SMS message delivery to the Twilio Number.

  • Validate the received SMS message payload with the Authy OneCode and/or Authy Phone Verification APIs.

  • Report if the token provided is valid or not.

  • Release the Twilio phone number and remove the Authy user depending on how you configure the framework.

So, if you need to test your 2FA application using Authy OneCode or Authy Phone Verification in an automated fashion, this framework is for you.

Download or clone it from here and start testing!

The DevOps Zone is brought to you in partnership with Sonatype Nexus.  See how the Nexus platform infuses precise open source component intelligence into the DevOps pipeline early, everywhere, and at scale. Read how in this ebook

Like This Article? Read More From DZone

How to Stay Secure on Slack
Building Secure Systems Checklist, Part 2
Implementing Two Factor Authentication using Authenticator Apps

Free DZone Refcard

Continuous Integration
DOWNLOAD
Topics:
authy ,automated testing ,devops ,two-factor authentication ,authy framework

Comment (0)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Published at DZone with permission of Marcelo Jabali, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

DevOps Partner Resources

Accelerate DevOps Early, Everywhere at Scale
DevOps Incident Management Buyer’s Guide
Starting and Scaling DevOps in the Enterprise
DevOps and Continuous Delivery Reference Architectures
The Ultimate Monitoring Tools Landscape
Take the Forrester DevOps Maturity Assessment Test
Jenkins, Docker and DevOps: The Innovation Catalysts
The How and Why of Minimum Viable Runbooks
The DevOps Journey - From Waterfall to Continuous Delivery
Automate Security in Your DevOps Pipeline
Solve the 4 Major Problems with Text Data
Agile and DevOps: Friends or Foes?

DevOps Partner Resources

Accelerate DevOps Early, Everywhere at Scale
DevOps Incident Management Buyer’s Guide
Starting and Scaling DevOps in the Enterprise
DevOps and Continuous Delivery Reference Architectures
THE DZONE NEWSLETTER

Dev Resources & Solutions Straight to Your Inbox

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

X

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.linkDescription }}

{{ parent.urlSource.name }}
by {{ parent.authors[0].realName || parent.author}}
· {{ parent.articleDate | date:'MMM. dd, yyyy' }} {{ parent.linkDate | date:'MMM. dd, yyyy' }}
· {{ parent.portal.name }} Zone