We use cookies to ensure you get the best experience on our website
Home Verkennen Help
Registreren Inloggen
0ct0pu5
/
2FAuth
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Boom: 9913560787
Aftakkingen Labels
2FAuth
/
app
/
Http
/
Controllers
/
Auth
/
WebAuthnManageController.php

WebAuthnManageController.php 2.1 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers\Auth;
    4. 

  4. 

  5. use App\Http\Controllers\Controller;
    6. 

  6. use App\Http\Requests\WebauthnRenameRequest;
    7. 

  7. use Illuminate\Http\Request;
    8. 

  8. use Illuminate\Support\Facades\Log;
    9. 

  9. 

  10. class WebAuthnManageController extends Controller
    11. 

  11. {
    12. 

  12.     /**
    13. 

  13.      * List all WebAuthn registered credentials
    14. 

  14.      *
    15. 

  15.      * @return \Illuminate\Http\JsonResponse
    16. 

  16.      */
    17. 

  17.     public function index(Request $request)
    18. 

  18.     {
    19. 

  19.         $allUserCredentials = $request->user()->webAuthnCredentials()->WhereEnabled()->get();
    20. 

  20. 

  21.         return response()->json($allUserCredentials, 200);
    22. 

  22.     }
    23. 

  23. 

  24.     /**
    25. 

  25.      * Rename a WebAuthn credential
    26. 

  26.      *
    27. 

  27.      * @param  \App\Http\Requests\WebauthnRenameRequest  $request
    28. 

  28.      * @param  string  $credential
    29. 

  29.      * @return \Illuminate\Http\JsonResponse
    30. 

  30.      */
    31. 

  31.     public function rename(WebauthnRenameRequest $request, string $credential)
    32. 

  32.     {
    33. 

  33.         $validated = $request->validated();
    34. 

  34. 

  35.         abort_if(! $request->user()->renameCredential($credential, $validated['name']), 404);
    36. 

  36. 

  37.         return response()->json([
    38. 

  38.             'name' => $validated['name'],
    39. 

  39.         ], 200);
    40. 

  40.     }
    41. 

  41. 

  42.     /**
    43. 

  43.      * Remove the specified credential from storage.
    44. 

  44.      *
    45. 

  45.      * @param  \Illuminate\Http\Request  $request
    46. 

  46.      * @param  string|array  $credential
    47. 

  47.      * @return \Illuminate\Http\JsonResponse
    48. 

  48.      */
    49. 

  49.     public function delete(Request $request, $credential)
    50. 

  50.     {
    51. 

  51.         Log::info('Deletion of security device requested');
    52. 

  52. 

  53.         $user = $request->user();
    54. 

  54.         $user->flushCredential($credential);
    55. 

  55. 

  56.         // Webauthn user options need to be reset to prevent impossible login when
    57. 

  57.         // no more registered device exists.
    58. 

  58.         // See #110
    59. 

  59.         if (blank($user->webAuthnCredentials()->WhereEnabled()->get())) {
    60. 

  60.             $request->user()->preferences['useWebauthnOnly'] = false;
    61. 

  61.             $request->user()->save();
    62. 

  62.             Log::notice(sprintf('No more Webauthn credential for user ID #%s, user Webauthn options reset to default', $user->id));
    63. 

  63.         }
    64. 

  64.        
    65. 

  65.         Log::info(sprintf('User ID #%s revoked a security device', $user->id));
    66. 

  66. 

  67.         return response()->json(null, 204);
    68. 

  68.     }
    69. 

  69. }
    70.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5