misc_pterodactyl-panel/app/Services/Users/ToggleTwoFactorService.php

81 lines
2.5 KiB
PHP
Raw Normal View History

<?php
namespace Pterodactyl\Services\Users;
2017-11-18 18:35:33 +00:00
use Carbon\Carbon;
2017-08-31 02:14:20 +00:00
use Pterodactyl\Models\User;
2017-11-18 18:35:33 +00:00
use PragmaRX\Google2FA\Google2FA;
use Illuminate\Contracts\Encryption\Encrypter;
use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
use Pterodactyl\Exceptions\Service\User\TwoFactorAuthenticationTokenInvalid;
class ToggleTwoFactorService
{
2017-11-18 18:35:33 +00:00
/**
* @var \Illuminate\Contracts\Encryption\Encrypter
*/
private $encrypter;
/**
* @var \PragmaRX\Google2FA\Google2FA
*/
private $google2FA;
/**
* @var \Pterodactyl\Contracts\Repository\UserRepositoryInterface
*/
2017-11-18 18:35:33 +00:00
private $repository;
/**
* ToggleTwoFactorService constructor.
*
2019-09-06 04:32:57 +00:00
* @param \Illuminate\Contracts\Encryption\Encrypter $encrypter
* @param \PragmaRX\Google2FA\Google2FA $google2FA
* @param \Pterodactyl\Contracts\Repository\UserRepositoryInterface $repository
*/
public function __construct(
2017-11-18 18:35:33 +00:00
Encrypter $encrypter,
Google2FA $google2FA,
UserRepositoryInterface $repository
) {
2017-11-18 18:35:33 +00:00
$this->encrypter = $encrypter;
$this->google2FA = $google2FA;
$this->repository = $repository;
}
/**
2017-11-18 18:35:33 +00:00
* Toggle 2FA on an account only if the token provided is valid.
*
* @param \Pterodactyl\Models\User $user
2019-09-06 04:32:57 +00:00
* @param string $token
* @param bool|null $toggleState
* @return bool
*
* @throws \PragmaRX\Google2FA\Exceptions\IncompatibleWithGoogleAuthenticatorException
* @throws \PragmaRX\Google2FA\Exceptions\InvalidCharactersException
* @throws \PragmaRX\Google2FA\Exceptions\SecretKeyTooShortException
* @throws \Pterodactyl\Exceptions\Model\DataValidationException
* @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
* @throws \Pterodactyl\Exceptions\Service\User\TwoFactorAuthenticationTokenInvalid
*/
2017-11-18 18:35:33 +00:00
public function handle(User $user, string $token, bool $toggleState = null): bool
{
2017-11-18 18:35:33 +00:00
$secret = $this->encrypter->decrypt($user->totp_secret);
$isValidToken = $this->google2FA->verifyKey($secret, $token, config()->get('pterodactyl.auth.2fa.window'));
2017-11-18 18:35:33 +00:00
if (! $isValidToken) {
throw new TwoFactorAuthenticationTokenInvalid(
'The token provided is not valid.'
);
}
2018-01-05 22:33:50 +00:00
$this->repository->withoutFreshModel()->update($user->id, [
2017-11-18 18:35:33 +00:00
'totp_authenticated_at' => Carbon::now(),
'use_totp' => (is_null($toggleState) ? ! $user->use_totp : $toggleState),
]);
return true;
}
}