0ct0pu5
/
2FAuth


			
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192
							<?php

namespace App\Http\Controllers\Auth;

use App\Facades\Settings;
use App\Http\Controllers\Controller;
use Illuminate\Http\Request;
use App\Http\Requests\WebauthnRenameRequest;
use DarkGhostHunter\Larapass\Eloquent\WebAuthnCredential;
use Illuminate\Support\Facades\Log;

class WebAuthnManageController extends Controller
{
    /*
    |--------------------------------------------------------------------------
    | WebAuthn Manage Controller
    |--------------------------------------------------------------------------
    |
    |
    */

    /**
     * Create a new controller instance.
     */
    public function __construct()
    {
    }
    

    /**
     * List all WebAuthn registered credentials
     * 
     * @return \Illuminate\Http\JsonResponse
     */
    public function index(Request $request)
    {
        $user = $request->user();
        $allUserCredentials = $user->webAuthnCredentials()
                                    ->enabled()
                                    ->get()
                                    ->all();

        return response()->json($allUserCredentials, 200);
    }


    /**
     * Rename a WebAuthn device
     * 
     * @param \App\Http\Requests\WebauthnRenameRequest $request
     * @return \Illuminate\Http\JsonResponse
     */
    public function rename(WebauthnRenameRequest $request, string $credential)
    {
        $validated = $request->validated();

        $webAuthnCredential = WebAuthnCredential::where('id', $credential)->firstOrFail();
        $webAuthnCredential->name = $validated['name']; // @phpstan-ignore-line
        $webAuthnCredential->save();

        return response()->json([
            'name' => $webAuthnCredential->name,
        ], 200);
    }

    /**
     * Remove the specified credential from storage.
     * 
     * @param  \Illuminate\Http\Request  $request
     * @param  string|array  $credential
     *
     * @return \Illuminate\Http\JsonResponse
     */
    public function delete(Request $request, $credential)
    {
        Log::info('Deletion of security device requested');

        $user = $request->user();
        $user->removeCredential($credential);

        // Webauthn user options should be reset to prevent impossible login
        // See #110
        if (blank($user->allCredentialDescriptors())) {
            Settings::delete('useWebauthnAsDefault');
            Settings::delete('useWebauthnOnly');
        }

        Log::info('Security device deleted');

        return response()->json(null, 204);
    }
}