Skip to content
This repository has been archived by the owner on Jul 7, 2020. It is now read-only.
/ swivel-authenticator Public archive

A convenience tool for the Swivel Authentication API

License

ISC license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

berlam/swivel-authenticator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.github
.github
 
 
cmd
cmd
 
 
pkg
pkg
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 

Repository files navigation

swivel-authenticator

An alternative to the Swivel Mobile authenticator from SwivelSecure, which uses the officially documented API. Currently this project does not cover every functionality of the Swivel Mobile App but it satisfies my use case. Feel free to extend it for yours.

I am using it to connect to a VPN, which asks for the OTC. The call looks like this and connects instantly to the VPN.

$ swivelt $SWIVEL_PROVISION_ID $SWIVEL_USER_PIN | vpnc $VPNC_CONFIG_LOCATION

Settings and keys are stored in: $HOME/swivel-$SWIVEL_SERVER_ID

Arguments

  • Provision
$ swivelp $SWIVEL_SERVER_ID $SWIVEL_USERNAME $SWIVEL_PROVISION_CODE
  • OTC
$ swivelt $SWIVEL_SERVER_ID $SWIVEL_USER_PIN

You can disable certificate validation with '--no-verify' as last argument.

Build from source

If you want to build Swivel Authenticator right away you need to have a working Go environment.

$ go get -d github.com/berlam/swivel-authenticator/cmd/{swivelp,swivelt}
$ go install github.com/berlam/swivel-authenticator/{pkg,cmd/swivelp,cmd/swivelt}

Authentication API

Here are the Swivel APIs used for the authentication.

GET Server Details with ServerId

GET https://ssd.swivelsecure.net/ssdserver/getServerDetails?id=$SWIVEL_SERVER_ID

POST to get provisioning message

POST $SCHEME://$HOSTNAME:$PORT/$CONNECTION_TYPE/AgentXML

<?xml version='1.0' ?>
<SASRequest>
	<Version>3.6</Version>
	<Action>provision</Action>
	<Username>$SWIVEL_USERNAME</Username>
	<ProvisionCode>$SWIVEL_PROVISION_CODE</ProvisionCode>
</SASRequest>

POST to get new security keys

POST $SCHEME://$HOSTNAME:$PORT/$CONNECTION_TYPE/AgentXML

<?xml version='1.0' ?>
<SASRequest>
	<Version>3.6</Version>
	<Action>SecurityStrings</Action>
	<Id>$SWIVEL_PROVISION_ID</Id>
</SASRequest>

OTC

Security keys are always 10 digits.

The OTC is generated as follows:

  1. Get the index of the last security key used. Decrease it by one.
  2. Get the security key at position of the index.
  3. Get the number at each number position of the PIN (0 is position 10).
  4. Append the index as two digits number.

Example: PIN is 9132. Security key at index 6 is 0123456789. Result is: 802106. See Test.

Note: The keys will be updated, when the index reaches zero. You will get 100 new security keys.

Resources

Swivel Knowledge Base Authentication API

Credits

This project was created by @berlam.

License

See LICENSE.

About

A convenience tool for the Swivel Authentication API

Topics

twofactorauth authenticator two-factor-authentication 2fa swivel

Resources

Readme

License

ISC license
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages