We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
anonaddy
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 1917f0b3b5
分支列表 标签列表
anonaddy
/
app
/
Http
/
Controllers
/
Auth
/
TwoFactorAuthController.php

TwoFactorAuthController.php 2.3 KB
文件历史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers\Auth;
    4. 

  4. 

  5. use App\Http\Controllers\Controller;
    6. 

  6. use App\Http\Requests\EnableTwoFactorAuthRequest;
    7. 

  7. use Illuminate\Http\Request;
    8. 

  8. use Illuminate\Support\Facades\Hash;
    9. 

  9. use Illuminate\Support\Str;
    10. 

  10. use PragmaRX\Google2FALaravel\Support\Authenticator;
    11. 

  11. 

  12. class TwoFactorAuthController extends Controller
    13. 

  13. {
    14. 

  14.     protected $twoFactor;
    15. 

  15.     protected $authenticator;
    16. 

  16. 

  17.     public function __construct(Request $request)
    18. 

  18.     {
    19. 

  19.         $this->twoFactor = app('pragmarx.google2fa');
    20. 

  20.         $this->authenticator = app(Authenticator::class)->boot($request);
    21. 

  21.     }
    22. 

  22. 

  23.     public function store(EnableTwoFactorAuthRequest $request)
    24. 

  24.     {
    25. 

  25.         if (!$this->twoFactor->verifyKey(user()->two_factor_secret, $request->two_factor_token)) {
    26. 

  26.             return redirect(url()->previous().'#two-factor')->withErrors(['two_factor_token' => 'The token you entered was incorrect']);
    27. 

  27.         }
    28. 

  28. 

  29.         user()->update([
    30. 

  30.             'two_factor_enabled' => true,
    31. 

  31.             'two_factor_backup_code' => bcrypt($code = Str::random(40))
    32. 

  32.         ]);
    33. 

  33. 

  34.         $this->authenticator->login();
    35. 

  35. 

  36.         return back()->with(['backupCode' => $code]);
    37. 

  37.     }
    38. 

  38. 

  39.     public function update()
    40. 

  40.     {
    41. 

  41.         if (user()->two_factor_enabled) {
    42. 

  42.             return back()->withErrors(['regenerate_2fa' => 'You must disable 2FA before you can regenerate your secret key']);
    43. 

  43.         }
    44. 

  44. 

  45.         user()->update(['two_factor_secret' => $this->twoFactor->generateSecretKey()]);
    46. 

  46. 

  47.         return back()->with(['status' => '2FA Secret Successfully Regenerated']);
    48. 

  48.     }
    49. 

  49. 

  50.     public function destroy(Request $request)
    51. 

  51.     {
    52. 

  52.         if (!Hash::check($request->current_password_2fa, user()->password)) {
    53. 

  53.             return back()->withErrors(['current_password_2fa' => 'Current password incorrect']);
    54. 

  54.         }
    55. 

  55. 

  56.         user()->update([
    57. 

  57.             'two_factor_enabled' => false,
    58. 

  58.             'two_factor_secret' => $this->twoFactor->generateSecretKey()
    59. 

  59.         ]);
    60. 

  60. 

  61.         $this->authenticator->logout();
    62. 

  62. 

  63.         return back()->with(['status' => '2FA Disabled Successfully']);
    64. 

  64.     }
    65. 

  65. 

  66.     public function authenticateTwoFactor(Request $request)
    67. 

  67.     {
    68. 

  68.         if ($request->session()->has('intended_path')) {
    69. 

  69.             return redirect($request->session()->pull('intended_path'));
    70. 

  70.         }
    71. 

  71. 

  72.         redirect()->intended($request->redirectPath);
    73. 

  73.     }
    74. 

  74. }
    75.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5