We use cookies to ensure you get the best experience on our website
Halaman utama Jelajahi Bantuan
Daftar Masuk
0ct0pu5
/
anonaddy
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: fd92e09e5e
Ranting Tag
anonaddy
/
app
/
Http
/
Controllers
/
Auth
/
BackupCodeController.php

BackupCodeController.php 1.8 KB
Riwayat Mentahan

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers\Auth;
    4. 

  4. 

  5. use App\Facades\Webauthn;
    6. 

  6. use App\Http\Controllers\Controller;
    7. 

  7. use Illuminate\Http\Request;
    8. 

  8. use Illuminate\Support\Facades\Hash;
    9. 

  9. use Illuminate\Support\Str;
    10. 

  10. use PragmaRX\Google2FALaravel\Support\Authenticator;
    11. 

  11. 

  12. class BackupCodeController extends Controller
    13. 

  13. {
    14. 

  14.     public function __construct()
    15. 

  15.     {
    16. 

  16.         $this->middleware('auth');
    17. 

  17.         $this->middleware('throttle:3,1')->only('login');
    18. 

  18.     }
    19. 

  19. 

  20.     public function index(Request $request)
    21. 

  21.     {
    22. 

  22.         $authenticator = app(Authenticator::class)->boot($request);
    23. 

  23. 

  24.         if (($authenticator->isAuthenticated() || ! $request->user()->two_factor_enabled) && ! Webauthn::enabled($request->user())) {
    25. 

  25.             return redirect('/');
    26. 

  26.         }
    27. 

  27. 

  28.         return view('auth.backup_code');
    29. 

  29.     }
    30. 

  30. 

  31.     public function login(Request $request)
    32. 

  32.     {
    33. 

  33.         $this->validate($request, [
    34. 

  34.             'backup_code' => 'required',
    35. 

  35.         ]);
    36. 

  36. 

  37.         if (! Hash::check($request->backup_code, user()->two_factor_backup_code)) {
    38. 

  38.             return back()->withErrors([
    39. 

  39.                 'backup_code' => __('The backup code was invalid.'),
    40. 

  40.             ]);
    41. 

  41.         }
    42. 

  42. 

  43.         $twoFactor = app('pragmarx.google2fa');
    44. 

  44. 

  45.         user()->update([
    46. 

  46.             'two_factor_enabled' => false,
    47. 

  47.             'two_factor_secret' => $twoFactor->generateSecretKey(),
    48. 

  48.             'two_factor_backup_code' => null,
    49. 

  49.         ]);
    50. 

  50. 

  51.         user()->webauthnKeys()->delete();
    52. 

  52. 

  53.         if ($request->session()->has('intended_path')) {
    54. 

  54.             return redirect($request->session()->pull('intended_path'));
    55. 

  55.         }
    56. 

  56. 

  57.         return redirect()->intended($request->redirectPath);
    58. 

  58.     }
    59. 

  59. 

  60.     public function update()
    61. 

  61.     {
    62. 

  62.         user()->update([
    63. 

  63.             'two_factor_backup_code' => bcrypt($code = Str::random(40)),
    64. 

  64.         ]);
    65. 

  65. 

  66.         return back()->with(['backupCode' => $code]);
    67. 

  67.     }
    68. 

  68. }
    69.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5