Send an One Time Password (OTP) via the MessageBird SMS gateway

Problem this snippet solves:

This snippet makes it possible to send an One Time Password (OTP) via the MessageBird SMS gateway. This snippet uses iRuleLX and the node.js messagebird package to interact with the MessageBird API.

How to use this snippet:

Prepare the BIG-IP

  • Provision the BIG-IP with iRuleLX.
  • Create LX Workspace: messagebird
  • Add iRule: messagebird_irule
  • Add Extension: messagebird_extension
  • Add LX Plugin: messagebird_plugin -> From Workspace: messagebird

Install the node.js messagebird module

# cd /var/ilx/workspaces/Common/messagebird/extensions/messagebird_extension
# npm install messagebird --save  
messagebird@2.1.4 node_modules/messagebird
#

irule

To make it works, you need to install the irule on the Virtual Server that publish your application with APM authentication.

access profile

If you already have an existing access profile, you will need to modify it and include some additionnal configuration in your VPE. If you have no access profile, you can starts building your own based on the description we provide below.

Configuring the Visual Policy Editor

The printscreen below is a minimal Visual Policy Editor used to make MessageBird OTP Authentication works properly :

For a larger version of this image please download here.

Irule Event – MessageBird

This is an irule event with the ID set to ‘MessageBird’. This will trigger the messagebird_irule to come into action.

MessageBird Status

This is an empty action with two branches. The branch named "successful" contains the following expression : 

expr { [mcget {session.custom.messagebird.status}] contains "successful" }

Message Box

This is a message box that will inform the user that there was a failure sending the One Time Password.

messagebird_irule

###
### Name   : messagebird_irule
### Author : Niels van Sluis, <niels@van-sluis.nl>
### Version: 20180721.001
### Date   : 2018-07-21
###

when ACCESS_POLICY_AGENT_EVENT {
    if { [ACCESS::policy agent_id ] eq "MessageBird" } {

        # Set MessageBird access key    
        set accessKey "<ACCESS_KEY>"

        # Set user-friendly message which will be send prior to the OTP itself
        set message "Your OTP is: "

        # Set username used for logging purposes only
        set username "[ACCESS::session data get session.logon.last.username]"

        # Set OTP generated by BIG-IP APM which will be added to the SMS message.
        set generatedOTP "[ACCESS::session data get session.otp.assigned.val]"

        # Set phonenumber to send the SMS to
        set telephoneNumber "[ACCESS::session data get session.ad.last.attr.telephoneNumber]"

        # Set the sender of the message. This can be a telephone number (including country code) or an alphanumeric string.
        # In case of an alphanumeric string, the maximum length is 11 characters.
        set sender "MessageBird"

        if {[info exists username] && ($username eq "")} {
            log local0. "Error: username variable is empty; no OTP sent."
            return
        }

        if {[info exists generatedOTP] && ($generatedOTP eq "")} {
            log local0. "Error: generatedOTP variable is empty; no OTP sent for user $username."
            return
        }

        if {([info exists telephoneNumber] && $telephoneNumber eq "")} {
            log local0. "Error: telephoneNumber variable is empty; no OTP sent for user $username."
            return
        }

        set rpc_handle [ ILX::init messagebird_plugin messagebird_extension ]
        if {[ catch { ILX::call $rpc_handle sendOTP $generatedOTP $telephoneNumber $sender $message $accessKey } result ] } {
            log local0. "sendOTP failed for telephoneNumber: $telephoneNumber, ILX failure: $result"
            return
        }

        log local0. "MessageBird status for user $username ($telephoneNumber): $result"
        ACCESS::session data set session.custom.messagebird.status $result
    }
}

Code :

/**
*** Name   : messagebird_extension
*** Author : Niels van Sluis, 
*** Version: 20180721.001
*** Date   : 2018-07-21
**/

// Import the f5-nodejs module.
var f5 = require('f5-nodejs');

// Create a new rpc server for listening to TCL iRule calls.
var ilx = new f5.ILXServer();

ilx.addMethod('sendOTP', function(req, res) {
    var generatedOTP = req.params()[0];
    var telephoneNumber = req.params()[1];
    var sender = req.params()[2];
    var message = req.params()[3];
    var accessKey = req.params()[4];
    
    var params = {
        'originator': sender,
        'recipients': [ telephoneNumber ],
        'body': message + generatedOTP
    };
    
    var messagebird = require('messagebird')(accessKey);
    
    messagebird.messages.create(params, function (err, response) {
        if (err) {
            //console.log(err);
            return res.reply('failed');
        }
        //console.log(response);
        return res.reply('successful');
    });
    
});

// Start listening for ILX::call and ILX::notify events.
ilx.listen();

Tested this on version:

13.0
Updated Jun 06, 2023
Version 2.0
2fa
APM
application delivery
irule
nodejs
otp
sms

Was this article helpful?

3 Comments

Sort By