We use cookies to ensure you get the best experience on our website
Inicio Explorar Ayuda
Registro Iniciar sesión
0ct0pu5
/
anonaddy
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: f1d5963dfd
Ramas Etiquetas
anonaddy
/
app
/
Http
/
Controllers
/
Auth
/
TwoFactorAuthController.php

TwoFactorAuthController.php 2.3 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers\Auth;
    4. 

  4. 

  5. use App\Http\Controllers\Controller;
    6. 

  6. use App\Http\Requests\EnableTwoFactorAuthRequest;
    7. 

  7. use Illuminate\Http\Request;
    8. 

  8. use Illuminate\Support\Facades\Hash;
    9. 

  9. use Illuminate\Support\Str;
    10. 

  10. use PragmaRX\Google2FALaravel\Support\Authenticator;
    11. 

  11. 

  12. class TwoFactorAuthController extends Controller
    13. 

  13. {
    14. 

  14.     protected $twoFactor;
    15. 

  15.     protected $authenticator;
    16. 

  16. 

  17.     public function __construct(Request $request)
    18. 

  18.     {
    19. 

  19.         $this->twoFactor = app('pragmarx.google2fa');
    20. 

  20.         $this->authenticator = app(Authenticator::class)->boot($request);
    21. 

  21.     }
    22. 

  22. 

  23.     public function store(EnableTwoFactorAuthRequest $request)
    24. 

  24.     {
    25. 

  25.         if (!$this->twoFactor->verifyKey(user()->two_factor_secret, $request->two_factor_token)) {
    26. 

  26.             return redirect(url()->previous().'#two-factor')->withErrors(['two_factor_token' => 'The token you entered was incorrect']);
    27. 

  27.         }
    28. 

  28. 

  29.         user()->webauthnKeys()->delete();
    30. 

  30. 

  31.         user()->update([
    32. 

  32.             'two_factor_enabled' => true,
    33. 

  33.             'two_factor_backup_code' => bcrypt($code = Str::random(40))
    34. 

  34.         ]);
    35. 

  35. 

  36.         $this->authenticator->login();
    37. 

  37. 

  38.         return back()->with(['backupCode' => $code]);
    39. 

  39.     }
    40. 

  40. 

  41.     public function update()
    42. 

  42.     {
    43. 

  43.         if (user()->two_factor_enabled) {
    44. 

  44.             return back()->withErrors(['regenerate_2fa' => 'You must disable 2FA before you can regenerate your secret key']);
    45. 

  45.         }
    46. 

  46. 

  47.         user()->update(['two_factor_secret' => $this->twoFactor->generateSecretKey()]);
    48. 

  48. 

  49.         return back()->with(['status' => '2FA Secret Successfully Regenerated']);
    50. 

  50.     }
    51. 

  51. 

  52.     public function destroy(Request $request)
    53. 

  53.     {
    54. 

  54.         if (!Hash::check($request->current_password_2fa, user()->password)) {
    55. 

  55.             return back()->withErrors(['current_password_2fa' => 'Current password incorrect']);
    56. 

  56.         }
    57. 

  57. 

  58.         user()->update([
    59. 

  59.             'two_factor_enabled' => false,
    60. 

  60.             'two_factor_secret' => $this->twoFactor->generateSecretKey()
    61. 

  61.         ]);
    62. 

  62. 

  63.         $this->authenticator->logout();
    64. 

  64. 

  65.         return back()->with(['status' => '2FA Disabled Successfully']);
    66. 

  66.     }
    67. 

  67. 

  68.     public function authenticateTwoFactor(Request $request)
    69. 

  69.     {
    70. 

  70.         if ($request->session()->has('intended_path')) {
    71. 

  71.             return redirect($request->session()->pull('intended_path'));
    72. 

  72.         }
    73. 

  73. 

  74.         redirect()->intended($request->redirectPath);
    75. 

  75.     }
    76. 

  76. }
    77.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5