cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

Problem this snippet solves:

This snippet makes it possible to send an One Time Password (OTP) via the MessageBird SMS gateway. This snippet uses iRuleLX and the node.js messagebird package to interact with the MessageBird API.

How to use this snippet:

Prepare the BIG-IP

  • Provision the BIG-IP with iRuleLX.
  • Create LX Workspace: messagebird
  • Add iRule: messagebird_irule
  • Add Extension: messagebird_extension
  • Add LX Plugin: messagebird_plugin -> From Workspace: messagebird

Install the node.js messagebird module

# cd /var/ilx/workspaces/Common/messagebird/extensions/messagebird_extension
# npm install messagebird --save  
messagebird@2.1.4 node_modules/messagebird
#

irule

To make it works, you need to install the irule on the Virtual Server that publish your application with APM authentication.

access profile

If you already have an existing access profile, you will need to modify it and include some additionnal configuration in your VPE. If you have no access profile, you can starts building your own based on the description we provide below.

Configuring the Visual Policy Editor

The printscreen below is a minimal Visual Policy Editor used to make MessageBird OTP Authentication works properly :

0151T000003d9DPQAY.PNG

For a larger version of this image please download here.

Irule Event – MessageBird

This is an irule event with the ID set to ‘MessageBird’. This will trigger the messagebird_irule to come into action.

MessageBird Status

This is an empty action with two branches. The branch named "successful" contains the following expression : expr { [mcget {session.custom.messagebird.status}] contains "successful" }

Message Box

This is a message box that will inform the user that there was a failure sending the One Time Password.

messagebird_irule

###
### Name   : messagebird_irule
### Author : Niels van Sluis, <niels@van-sluis.nl>
### Version: 20180721.001
### Date   : 2018-07-21
###

when ACCESS_POLICY_AGENT_EVENT {
    if { [ACCESS::policy agent_id ] eq "MessageBird" } {

        # Set MessageBird access key    
        set accessKey "<ACCESS_KEY>"

        # Set user-friendly message which will be send prior to the OTP itself
        set message "Your OTP is: "

        # Set username used for logging purposes only
        set username "[ACCESS::session data get session.logon.last.username]"

        # Set OTP generated by BIG-IP APM which will be added to the SMS message.
        set generatedOTP "[ACCESS::session data get session.otp.assigned.val]"

        # Set phonenumber to send the SMS to
        set telephoneNumber "[ACCESS::session data get session.ad.last.attr.telephoneNumber]"

        # Set the sender of the message. This can be a telephone number (including country code) or an alphanumeric string.
        # In case of an alphanumeric string, the maximum length is 11 characters.
        set sender "MessageBird"

        if {[info exists username] && ($username eq "")} {
            log local0. "Error: username variable is empty; no OTP sent."
            return
        }

        if {[info exists generatedOTP] && ($generatedOTP eq "")} {
            log local0. "Error: generatedOTP variable is empty; no OTP sent for user $username."
            return
        }

        if {([info exists telephoneNumber] && $telephoneNumber eq "")} {
            log local0. "Error: telephoneNumber variable is empty; no OTP sent for user $username."
            return
        }

        set rpc_handle [ ILX::init messagebird_plugin messagebird_extension ]
        if {[ catch { ILX::call $rpc_handle sendOTP $generatedOTP $telephoneNumber $sender $message $accessKey } result ] } {
            log local0. "sendOTP failed for telephoneNumber: $telephoneNumber, ILX failure: $result"
            return
        }

        log local0. "MessageBird status for user $username ($telephoneNumber): $result"
        ACCESS::session data set session.custom.messagebird.status $result
    }
}

Code :

/**
*** Name   : messagebird_extension
*** Author : Niels van Sluis, 
*** Version: 20180721.001
*** Date   : 2018-07-21
**/

// Import the f5-nodejs module.
var f5 = require('f5-nodejs');

// Create a new rpc server for listening to TCL iRule calls.
var ilx = new f5.ILXServer();

ilx.addMethod('sendOTP', function(req, res) {
    var generatedOTP = req.params()[0];
    var telephoneNumber = req.params()[1];
    var sender = req.params()[2];
    var message = req.params()[3];
    var accessKey = req.params()[4];
    
    var params = {
        'originator': sender,
        'recipients': [ telephoneNumber ],
        'body': message + generatedOTP
    };
    
    var messagebird = require('messagebird')(accessKey);
    
    messagebird.messages.create(params, function (err, response) {
        if (err) {
            //console.log(err);
            return res.reply('failed');
        }
        //console.log(response);
        return res.reply('successful');
    });
    
});

// Start listening for ILX::call and ILX::notify events.
ilx.listen();

Tested this on version:

13.0
Comments
Manuel_Cristob2
Nimbostratus
Nimbostratus

Hi Niels, very useful information but I am trying to use Twilio instead of MessageBird as it is a customer's requirement.

 

Do you know how/where can I get the node.js for Twilio?

 

I have found this link but it looks confusing to me. Do I have to build the node.js or can i download it and install it in the F5?

 

https://www.twilio.com/docs/guides/how-to-send-sms-messages-in-node-jssign-up-for-a-twilio-account

 

Much appreciated

 

Also.. could you please paste the APM policy a little bigger? It is hard to read and follow

 

Regards

 

Manuel

 

Hi Manuel,

 

See here, a new snippet that will get you going.

 

https://devcentral.f5.com/s/articles/send-an-one-time-password-otp-via-the-twilio-sms-gateway-1132

 

And about the APM policy picture, try using the 'zoom' function of your browser. The details are in there.

 

Kind regards,

 

Niels

 

Manuel_Cristob2
Nimbostratus
Nimbostratus

Very much appreciated ...

 

This information will help for sure.

 

Regards Manuel

 

Version history
Last update:
‎12-Jan-2018 08:01
Updated by:
Contributors