mirror of
https://github.com/LBPUnion/ProjectLighthouse.git
synced 2025-05-15 22:22:27 +00:00
14d2f0305e
* Initial work for TOTP 2FA * Fix bug in 2FA code script * Add translations for two factor and /disable2fa * Fix compilation error * Add TwoFactorLoginPage * Add two factor login process * Little bit of backup code work * Finish two factor * Fix unit tests * ??? goofy ahh code * Use SHA-256 instead of SHA-512 * I guess SHA-256 doesn't work either * Fix comments in Base32 helper * Move QRCoder package to website * Add name to endregion comment in css * Fix bug with redirects
67 lines
No EOL
2.4 KiB
C#
67 lines
No EOL
2.4 KiB
C#
using LBPUnion.ProjectLighthouse.Configuration;
|
|
using LBPUnion.ProjectLighthouse.Helpers;
|
|
using LBPUnion.ProjectLighthouse.Localization.StringLists;
|
|
using LBPUnion.ProjectLighthouse.PlayerData.Profiles;
|
|
using LBPUnion.ProjectLighthouse.Servers.Website.Pages.Layouts;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
namespace LBPUnion.ProjectLighthouse.Servers.Website.Pages.TwoFactor;
|
|
|
|
public class DisableTwoFactorPage : BaseLayout
|
|
{
|
|
public DisableTwoFactorPage(Database database) : base(database) { }
|
|
|
|
public string Error { get; set; } = "";
|
|
|
|
public IActionResult OnGet()
|
|
{
|
|
if (!ServerConfiguration.Instance.TwoFactorConfiguration.TwoFactorEnabled) return this.Redirect("~/login");
|
|
|
|
User? user = this.Database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("~/login");
|
|
|
|
if (!user.IsTwoFactorSetup) return this.Redirect("~/user/" + user.UserId + "/settings");
|
|
|
|
return this.Page();
|
|
}
|
|
|
|
public async Task<IActionResult> OnPost([FromForm] string? code, [FromForm] string? backup)
|
|
{
|
|
if (!ServerConfiguration.Instance.TwoFactorConfiguration.TwoFactorEnabled) return this.Redirect("~/login");
|
|
|
|
User? user = this.Database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("~/login");
|
|
|
|
if (!user.IsTwoFactorSetup) return this.Redirect("~/user/" + user.UserId + "/settings");
|
|
|
|
// if both are null or neither are null, there should only be one at at time
|
|
if (string.IsNullOrWhiteSpace(code) == string.IsNullOrWhiteSpace(backup))
|
|
{
|
|
this.Error = this.Translate(TwoFactorStrings.InvalidCode);
|
|
return this.Page();
|
|
}
|
|
|
|
if (string.IsNullOrWhiteSpace(backup))
|
|
{
|
|
if (!CryptoHelper.VerifyCode(code, user.TwoFactorSecret))
|
|
{
|
|
this.Error = this.Translate(TwoFactorStrings.InvalidCode);
|
|
return this.Page();
|
|
}
|
|
}
|
|
else
|
|
{
|
|
if(!CryptoHelper.VerifyBackup(backup, user.TwoFactorBackup))
|
|
{
|
|
this.Error = this.Translate(TwoFactorStrings.InvalidBackupCode);
|
|
return this.Page();
|
|
}
|
|
}
|
|
|
|
user.TwoFactorBackup = null;
|
|
user.TwoFactorSecret = null;
|
|
await this.Database.SaveChangesAsync();
|
|
|
|
return this.Redirect("~/user/" + user.UserId + "/settings");
|
|
}
|
|
} |