Send an One Time Password (OTP) via the MessageBird SMS gateway
Problem this snippet solves:
This snippet makes it possible to send an One Time Password (OTP) via the MessageBird SMS gateway. This snippet uses iRuleLX and the node.js messagebird package to interact with the MessageBird API.
How to use this snippet:
Prepare the BIG-IP
- Provision the BIG-IP with iRuleLX.
- Create LX Workspace: messagebird
- Add iRule: messagebird_irule
- Add Extension: messagebird_extension
- Add LX Plugin: messagebird_plugin -> From Workspace: messagebird
Install the node.js messagebird module
# cd /var/ilx/workspaces/Common/messagebird/extensions/messagebird_extension # npm install messagebird --save messagebird@2.1.4 node_modules/messagebird #
irule
To make it works, you need to install the irule on the Virtual Server that publish your application with APM authentication.
access profile
If you already have an existing access profile, you will need to modify it and include some additionnal configuration in your VPE. If you have no access profile, you can starts building your own based on the description we provide below.
Configuring the Visual Policy Editor
The printscreen below is a minimal Visual Policy Editor used to make MessageBird OTP Authentication works properly :
For a larger version of this image please download here.
Irule Event – MessageBird
This is an irule event with the ID set to ‘MessageBird’. This will trigger the messagebird_irule to come into action.
MessageBird Status
This is an empty action with two branches. The branch named "successful" contains the following expression :
expr { [mcget {session.custom.messagebird.status}] contains "successful" }
Message Box
This is a message box that will inform the user that there was a failure sending the One Time Password.
messagebird_irule
###
### Name : messagebird_irule
### Author : Niels van Sluis, <niels@van-sluis.nl>
### Version: 20180721.001
### Date : 2018-07-21
###
when ACCESS_POLICY_AGENT_EVENT {
if { [ACCESS::policy agent_id ] eq "MessageBird" } {
# Set MessageBird access key
set accessKey "<ACCESS_KEY>"
# Set user-friendly message which will be send prior to the OTP itself
set message "Your OTP is: "
# Set username used for logging purposes only
set username "[ACCESS::session data get session.logon.last.username]"
# Set OTP generated by BIG-IP APM which will be added to the SMS message.
set generatedOTP "[ACCESS::session data get session.otp.assigned.val]"
# Set phonenumber to send the SMS to
set telephoneNumber "[ACCESS::session data get session.ad.last.attr.telephoneNumber]"
# Set the sender of the message. This can be a telephone number (including country code) or an alphanumeric string.
# In case of an alphanumeric string, the maximum length is 11 characters.
set sender "MessageBird"
if {[info exists username] && ($username eq "")} {
log local0. "Error: username variable is empty; no OTP sent."
return
}
if {[info exists generatedOTP] && ($generatedOTP eq "")} {
log local0. "Error: generatedOTP variable is empty; no OTP sent for user $username."
return
}
if {([info exists telephoneNumber] && $telephoneNumber eq "")} {
log local0. "Error: telephoneNumber variable is empty; no OTP sent for user $username."
return
}
set rpc_handle [ ILX::init messagebird_plugin messagebird_extension ]
if {[ catch { ILX::call $rpc_handle sendOTP $generatedOTP $telephoneNumber $sender $message $accessKey } result ] } {
log local0. "sendOTP failed for telephoneNumber: $telephoneNumber, ILX failure: $result"
return
}
log local0. "MessageBird status for user $username ($telephoneNumber): $result"
ACCESS::session data set session.custom.messagebird.status $result
}
}
Code :
/** *** Name : messagebird_extension *** Author : Niels van Sluis,*** Version: 20180721.001 *** Date : 2018-07-21 **/ // Import the f5-nodejs module. var f5 = require('f5-nodejs'); // Create a new rpc server for listening to TCL iRule calls. var ilx = new f5.ILXServer(); ilx.addMethod('sendOTP', function(req, res) { var generatedOTP = req.params()[0]; var telephoneNumber = req.params()[1]; var sender = req.params()[2]; var message = req.params()[3]; var accessKey = req.params()[4]; var params = { 'originator': sender, 'recipients': [ telephoneNumber ], 'body': message + generatedOTP }; var messagebird = require('messagebird')(accessKey); messagebird.messages.create(params, function (err, response) { if (err) { //console.log(err); return res.reply('failed'); } //console.log(response); return res.reply('successful'); }); }); // Start listening for ILX::call and ILX::notify events. ilx.listen();
Tested this on version:
13.0Updated Jun 06, 2023
Version 2.0
Manuel_Cristob2Nimbostratus
Hi Niels, very useful information but I am trying to use Twilio instead of MessageBird as it is a customer's requirement.
Do you know how/where can I get the node.js for Twilio?
I have found this link but it looks confusing to me. Do I have to build the node.js or can i download it and install it in the F5?
https://www.twilio.com/docs/guides/how-to-send-sms-messages-in-node-jssign-up-for-a-twilio-account
Much appreciated
Also.. could you please paste the APM policy a little bigger? It is hard to read and follow
Regards
Manuel
Hi Manuel,
 
See here, a new snippet that will get you going.
 
https://devcentral.f5.com/s/articles/send-an-one-time-password-otp-via-the-twilio-sms-gateway-1132
 
And about the APM policy picture, try using the 'zoom' function of your browser. The details are in there.
 
Kind regards,
 
Niels
 
- Manuel_Cristob2
Very much appreciated ...
This information will help for sure.
Regards Manuel
