| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  | <?php | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * TwoFactorController.php | 
					
						
							| 
									
										
										
										
											2016-04-01 16:44:46 +02:00
										 |  |  |  * Copyright (C) 2016 thegrumpydictator@gmail.com | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |  * | 
					
						
							| 
									
										
										
										
											2016-10-05 06:52:15 +02:00
										 |  |  |  * This software may be modified and distributed under the terms of the | 
					
						
							|  |  |  |  * Creative Commons Attribution-ShareAlike 4.0 International License. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * See the LICENSE file for details. | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |  */ | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-05-20 12:27:31 +02:00
										 |  |  | declare(strict_types = 1); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  | namespace FireflyIII\Http\Controllers\Auth; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | use Carbon\Carbon; | 
					
						
							|  |  |  | use FireflyIII\Exceptions\FireflyException; | 
					
						
							|  |  |  | use FireflyIII\Http\Controllers\Controller; | 
					
						
							| 
									
										
										
										
											2016-03-19 16:24:35 +01:00
										 |  |  | use FireflyIII\Http\Requests\TokenFormRequest; | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  | use Log; | 
					
						
							|  |  |  | use Preferences; | 
					
						
							|  |  |  | use Session; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * Class TwoFactorController | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * @package FireflyIII\Http\Controllers\Auth | 
					
						
							|  |  |  |  */ | 
					
						
							|  |  |  | class TwoFactorController extends Controller | 
					
						
							|  |  |  | { | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * @return mixed | 
					
						
							|  |  |  |      * @throws FireflyException | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function index() | 
					
						
							|  |  |  |     { | 
					
						
							| 
									
										
										
										
											2016-09-16 12:15:58 +02:00
										 |  |  |         $user = auth()->user(); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |         // to make sure the validator in the next step gets the secret, we push it in session
 | 
					
						
							|  |  |  |         $secret = Preferences::get('twoFactorAuthSecret', '')->data; | 
					
						
							| 
									
										
										
										
											2016-04-03 10:34:42 +02:00
										 |  |  |         $title  = strval(trans('firefly.two_factor_title')); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |         if (strlen($secret) === 0) { | 
					
						
							| 
									
										
										
										
											2016-03-22 17:22:48 +01:00
										 |  |  |             throw new FireflyException('Your two factor authentication secret is empty, which it cannot be at this point. Please check the log files.'); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |         } | 
					
						
							|  |  |  |         Session::flash('two-factor-secret', $secret); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-04-03 10:34:42 +02:00
										 |  |  |         return view('auth.two-factor', compact('user', 'title')); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * @return mixed | 
					
						
							|  |  |  |      * @throws FireflyException | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function lostTwoFactor() | 
					
						
							|  |  |  |     { | 
					
						
							| 
									
										
										
										
											2016-09-16 12:15:58 +02:00
										 |  |  |         $user      = auth()->user(); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |         $siteOwner = env('SITE_OWNER', ''); | 
					
						
							| 
									
										
										
										
											2016-04-03 10:34:42 +02:00
										 |  |  |         $title     = strval(trans('firefly.two_factor_forgot_title')); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |         Log::info( | 
					
						
							|  |  |  |             'To reset the two factor authentication for user #' . $user->id . | 
					
						
							|  |  |  |             ' (' . $user->email . '), simply open the "preferences" table and delete the entries with the names "twoFactorAuthEnabled" and' . | 
					
						
							| 
									
										
										
										
											2016-03-19 16:24:35 +01:00
										 |  |  |             ' "twoFactorAuthSecret" for user_id ' . $user->id . '. That will take care of it.' | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |         ); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-04-03 10:34:42 +02:00
										 |  |  |         return view('auth.lost-two-factor', compact('user', 'siteOwner', 'title')); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							| 
									
										
										
										
											2016-03-19 16:24:35 +01:00
										 |  |  |      * @param TokenFormRequest $request | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @return mixed | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-03-19 16:24:35 +01:00
										 |  |  |     public function postIndex(TokenFormRequest $request) | 
					
						
							| 
									
										
										
										
											2016-03-19 16:22:57 +01:00
										 |  |  |     { | 
					
						
							|  |  |  |         Session::put('twofactor-authenticated', true); | 
					
						
							|  |  |  |         Session::put('twofactor-authenticated-date', new Carbon); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return redirect(route('home')); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-29 16:17:06 +02:00
										 |  |  | } |