We use cookies to ensure you get the best experience on our website
Home Verkennen Help
Registreren Inloggen
0ct0pu5
/
anonaddy
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Boom: fd92e09e5e
Aftakkingen Labels
anonaddy
/
app
/
Http
/
Controllers
/
Auth
/
TwoFactorAuthController.php

TwoFactorAuthController.php 2.4 KB
Geschiedenis Ruwe

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers\Auth;
    4. 

  4. 

  5. use App\Http\Controllers\Controller;
    6. 

  6. use App\Http\Requests\EnableTwoFactorAuthRequest;
    7. 

  7. use Illuminate\Http\Request;
    8. 

  8. use Illuminate\Support\Facades\Hash;
    9. 

  9. use Illuminate\Support\Str;
    10. 

  10. use PragmaRX\Google2FALaravel\Support\Authenticator;
    11. 

  11. 

  12. class TwoFactorAuthController extends Controller
    13. 

  13. {
    14. 

  14.     protected $twoFactor;
    15. 

  15. 

  16.     protected $authenticator;
    17. 

  17. 

  18.     public function __construct(Request $request)
    19. 

  19.     {
    20. 

  20.         $this->twoFactor = app('pragmarx.google2fa');
    21. 

  21.         $this->authenticator = app(Authenticator::class)->boot($request);
    22. 

  22.     }
    23. 

  23. 

  24.     public function index()
    25. 

  25.     {
    26. 

  26.         return redirect('/');
    27. 

  27.     }
    28. 

  28. 

  29.     public function store(EnableTwoFactorAuthRequest $request)
    30. 

  30.     {
    31. 

  31.         if (! $this->twoFactor->verifyKey(user()->two_factor_secret, $request->two_factor_token)) {
    32. 

  32.             return redirect(url()->previous().'#two-factor')->withErrors(['two_factor_token' => 'The token you entered was incorrect']);
    33. 

  33.         }
    34. 

  34. 

  35.         user()->webauthnKeys()->delete();
    36. 

  36. 

  37.         user()->update([
    38. 

  38.             'two_factor_enabled' => true,
    39. 

  39.             'two_factor_backup_code' => bcrypt($code = Str::random(40)),
    40. 

  40.         ]);
    41. 

  41. 

  42.         $this->authenticator->login();
    43. 

  43. 

  44.         return back()->with(['backupCode' => $code]);
    45. 

  45.     }
    46. 

  46. 

  47.     public function update()
    48. 

  48.     {
    49. 

  49.         if (user()->two_factor_enabled) {
    50. 

  50.             return back()->withErrors(['regenerate_2fa' => 'You must disable 2FA before you can regenerate your secret key']);
    51. 

  51.         }
    52. 

  52. 

  53.         user()->update(['two_factor_secret' => $this->twoFactor->generateSecretKey()]);
    54. 

  54. 

  55.         return back()->with(['status' => '2FA Secret Successfully Regenerated']);
    56. 

  56.     }
    57. 

  57. 

  58.     public function destroy(Request $request)
    59. 

  59.     {
    60. 

  60.         if (! Hash::check($request->current_password_2fa, user()->password)) {
    61. 

  61.             return back()->withErrors(['current_password_2fa' => 'Current password incorrect']);
    62. 

  62.         }
    63. 

  63. 

  64.         user()->update([
    65. 

  65.             'two_factor_enabled' => false,
    66. 

  66.             'two_factor_secret' => $this->twoFactor->generateSecretKey(),
    67. 

  67.         ]);
    68. 

  68. 

  69.         $this->authenticator->logout();
    70. 

  70. 

  71.         return back()->with(['status' => '2FA Disabled Successfully']);
    72. 

  72.     }
    73. 

  73. 

  74.     public function authenticateTwoFactor(Request $request)
    75. 

  75.     {
    76. 

  76.         if ($request->session()->has('intended_path')) {
    77. 

  77.             return redirect($request->session()->pull('intended_path'));
    78. 

  78.         }
    79. 

  79. 

  80.         redirect()->intended($request->redirectPath);
    81. 

  81.     }
    82. 

  82. }
    83.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5