Extension Development

[Paul Ellison]

I am looking to develop my own Plesk extension to implement Two Factor Authentication though a third party provider called Duo Security.

Having read a fair amount of documentation I have only found information about replacing/complementing the existing Username/Password login. Code from Google Authenticator and Clef extensions appears to be heavily obfuscated.

The Duo Security process I am trying to implement submits the username used in primary authentication and then offers the user with additional content loaded through an iFrame which is used to interact with the second factor. More details about the DuoWeb process is available here: https://duo.com/docs/duoweb

Is this the best place to get advice regarding this, or is there a specific Extension developer community?

Thanks
Paul

 

[Paul Ellison]

Update:

I have now created an extension framework, put together the settings page, and have values saving.
I have created a test hook (Auth.php) with the following to see if I can inhibit login. No luck so far.

class Modules_LdapAuth_Auth extends pm_Hook_Auth {

    public function auth($login, $password) {
        return false;
    }

    public function isEnabled() {
        return (bool)pm_Settings::get('enable');
    }

    public function breakChainOnFailure() {
        return true;
    }

}

 

[trialotto]

@Paul Ellison

Just start a personal conversation with me and we can have a look at your extension together, as soon as I can find some available time.

Regards...

 

[Paul Ellison]

@trialotto

Thank you for your response. Have sent a PM.

Paul

 

[vlikhtanskiy]

Hi @Paul Ellison

Also you can contact [email protected] mail list if you have some questions about the extension development.