We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
2FAuth
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: f3c6b9da5b
分支列表 标签列表
2FAuth
/
app
/
Http
/
Controllers
/
Auth
/
WebAuthnLoginController.php

WebAuthnLoginController.php 2.4 KB
文件历史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers\Auth;
    4. 

  4. 

  5. use App\Models\User;
    6. 

  6. use Illuminate\Http\Request;
    7. 

  7. use App\Http\Controllers\Controller;
    8. 

  8. use DarkGhostHunter\Larapass\Http\AuthenticatesWebAuthn;
    9. 

  9. 

  10. class WebAuthnLoginController extends Controller
    11. 

  11. {
    12. 

  12.     // use AuthenticatesWebAuthn;
    13. 

  13.     use AuthenticatesWebAuthn {
    14. 

  14. 		options as traitOptions;
    15. 

  15. 		login as traitLogin;
    16. 

  16. 	}
    17. 

  17. 

  18.     /*
    19. 

  19.     |--------------------------------------------------------------------------
    20. 

  20.     | WebAuthn Login Controller
    21. 

  21.     |--------------------------------------------------------------------------
    22. 

  22.     |
    23. 

  23.     | This controller allows the WebAuthn user device to request a login and
    24. 

  24.     | return the correctly signed challenge. Most of the hard work is done
    25. 

  25.     | by your Authentication Guard once the user is attempting to login.
    26. 

  26.     |
    27. 

  27.     */
    28. 

  28. 

  29.     public function __construct()
    30. 

  30.     {
    31. 

  31.         // $this->middleware(['guest', 'throttle:10,1']);
    32. 

  32.     }
    33. 

  33. 

  34. 

  35. 	public function options(Request $request)
    36. 

  36. 	{
    37. 

  37.         // Since 2FAuth is single user designed we fetch the user instance
    38. 

  38.         // and merge its email address to the request. This let Larapass validated
    39. 

  39.         // the request against a user instance without the need to ask the visitor
    40. 

  40.         // for an email address.
    41. 

  41.         //
    42. 

  42.         // This approach override the Larapass 'userless' config value that seems buggy.
    43. 

  43.         $user = User::first();
    44. 

  44. 

  45.         if (!$user) {
    46. 

  46.             return response()->json([
    47. 

  47.                 'message' => 'no registered user'
    48. 

  48.             ], 400);
    49. 

  49.         }
    50. 

  50.         else $request->merge(['email' => $user->email]);
    51. 

  51. 

  52. 		return $this->traitOptions($request);
    53. 

  53. 	}
    54. 

  54. 

  55. 

  56.     /**
    57. 

  57.      * Log the user in.
    58. 

  58.      *
    59. 

  59.      * @param  \Illuminate\Http\Request  $request
    60. 

  60.      *
    61. 

  61.      * @return \Illuminate\Http\Response|\Illuminate\Http\JsonResponse
    62. 

  62.      */
    63. 

  63.     public function login(Request $request)
    64. 

  64.     {
    65. 

  65.         if ($request->has('response')) {
    66. 

  66.             $response = $request->response;
    67. 

  67. 

  68.             // Some authenticators do not send a userHandle so we hack the response to be compliant
    69. 

  69.             // with Larapass/webauthn-lib implementation that wait for a userHandle
    70. 

  70.             if(!$response['userHandle']) {
    71. 

  71.                 $user = User::getFromCredentialId($request->id);
    72. 

  72.                 $response['userHandle'] = base64_encode($user->userHandle());
    73. 

  73.                 $request->merge(['response' => $response]);
    74. 

  74.             }
    75. 

  75.         }
    76. 

  76. 

  77.         return $this->traitLogin($request);
    78. 

  78.     }
    79. 

  79. }
    80.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5