我很难弄清楚如何使用这个库: https ://github.com/aws-amplify/amplify-js/tree/master/packages/amazon-cognito-identity-js
其中显示用例 27。选择 MFA 方法并使用 TOTP 进行身份验证。
我已经成功地完成了用户名和密码登录并完成了 SMS 代码,但我无法获得associateSecretCode要使用google authenticatorqr 扫描仪扫描的函数中给出的秘密令牌。不断给我一个无效的代码错误
这是我的代码:
cognitoUser.authenticateUser(authenticationDetails, {
onSuccess: function(result) {
const accessToken = result.getAccessToken().getJwtToken();
cognitoUser.associateSoftwareToken(this);
},
onFailure: function(err) {
alert(err.message || JSON.stringify(err));
},
mfaSetup: function(challengeName, challengeParameters) {
console.log("MFA SETUP");
cognitoUser.associateSoftwareToken(this);
},
associateSecretCode: async secretCode => {
console.log("SECRET CODE: ", secretCode);
await this.setState({ QRCode: secretCode, showQRCode: true });
setTimeout(() => {
const challengeAnswer = prompt("Please input the TOTP code.", "");
cognitoUser.verifySoftwareToken(challengeAnswer, "My TOTP device", {
onSuccess: session => console.log("SUCCESS TOTP: ", session),
onFailure: err => console.error("ERROR TOTP: ", err)
});
}, 2000);
},
selectMFAType: function(challengeName, challengeParameters) {
var mfaType = prompt("Please select the MFA method.", ""); // valid values for mfaType is "SMS_MFA", "SOFTWARE_TOKEN_MFA"
cognitoUser.sendMFASelectionAnswer(mfaType, this);
},
totpRequired: function(secretCode) {
var challengeAnswer = prompt("Please input the TOTP code.", "");
cognitoUser.sendMFACode(challengeAnswer, this, "SOFTWARE_TOKEN_MFA");
},
mfaRequired: function(codeDeliveryDetails) {
var verificationCode = prompt("Please input verification code", "");
cognitoUser.sendMFACode(verificationCode, this);
},
newPasswordRequired: userAttributes => {
this.setState({
user: userAttributes,
showNewPassword: true
});
}
});
生成了二维码,但是在扫描它时,谷歌身份验证器给了我这个错误:
我在这里做错了什么?