Thursday, February 16, 2017

Authy 2FA Automated Testing Framework

When developing a system that provides two-factor authentication capabilities it's always nice to see things working in an unit or functional testing. But, when you need to run automated integrated tests that doesn't seem to be an easy task as it might be dependent on other factors like sending and receiving SMS messages for example.

With that in mind, we have created an extensible framework for you to test your applications being deployed with Authy OneCode and Authy Phone Verification for the delivery of the one-time passwords and tokens via SMS.
The framework can be found here and it's completely free and open source.

Some of the tasks that the 2FA Automated Testing Framework is able to help you with are:

  • Setup a Webhook URL for the Twilio Number to forward the SMS messages generated and delivered by Authy OneCode and/or Authy Phone Verification. You can also set the framework to poll for SMS messages on your Twilio Number.
  • Register the Twilio Phone Number and create a new user with the Authy service
  • Use the Authy One Code and/or Authy Phone Verification API to trigger a SMS message delivery to the Twilio Number
  • Validate the received SMS message payload with the Authy OneCode and/or Authy Phone Verification APIs
  • Report if the token provided is valid or not
  • Release the Twilio Phone Number and remove the Authy user depending on how you configure the framework
So, if you need to test your 2FA application using Authy OneCode or Authy Phone Verification  in an automated fashion this framework is for you.

Download or clone it from here: and start testing!

Setting Up Local Environment for Developing Oracle Intelligent Bots Custom Components

Oh the joy of having a local development environment is priceless. For most cloud based solutions the story repeats itself being hard to tr...