mirror of
https://github.com/Icinga/icingaweb2.git
synced 2026-07-08 01:01:07 -04:00
69 lines
1.9 KiB
PHP
69 lines
1.9 KiB
PHP
<?php
|
|
|
|
namespace Icinga\Forms\Authentication;
|
|
|
|
use Icinga\Application\Hook\AuthenticationHook;
|
|
use Icinga\Authentication\Auth;
|
|
use Icinga\Authentication\Totp;
|
|
use Icinga\Web\Session;
|
|
use Icinga\Web\Url;
|
|
|
|
class Challenge2FAForm extends LoginForm
|
|
{
|
|
public function init()
|
|
{
|
|
$this->setRequiredCue(null);
|
|
$this->setName('form_challenge_2fa');
|
|
$this->setSubmitLabel($this->translate('Verify'));
|
|
$this->setProgressLabel($this->translate('Verifying'));
|
|
}
|
|
|
|
public function createElements(array $formData)
|
|
{
|
|
$this->addElement(
|
|
'text',
|
|
'code',
|
|
[
|
|
'autocapitalize' => 'off',
|
|
'class' => 'autofocus content-centered',
|
|
'placeholder' => $this->translate('Please enter your 2FA code'),
|
|
'required' => true,
|
|
'autocomplete' => 'off',
|
|
|
|
]
|
|
);
|
|
|
|
$this->addElement(
|
|
'hidden',
|
|
'redirect',
|
|
[
|
|
'value' => Url::fromRequest()->getParam('redirect')
|
|
]
|
|
);
|
|
}
|
|
|
|
public function onSuccess()
|
|
{
|
|
// TODO: Implement proper 2FA code validation
|
|
$user = Auth::getInstance()->getUser();
|
|
$totp = new Totp($user->getUsername());
|
|
if ($totp->verify($_POST['code'])) {
|
|
// if ($_POST['code'] == 666) {
|
|
|
|
$auth = Auth::getInstance();
|
|
$user = $auth->getUser();
|
|
Session::getSession()->set('challenged_successful_2fa_token', true);
|
|
Session::getSession()->delete('must_challenge_2fa_token');
|
|
|
|
$auth->setAuthenticated($user);
|
|
|
|
AuthenticationHook::triggerLogin($user);
|
|
$this->getResponse()->setRerenderLayout(true);
|
|
return true;
|
|
}
|
|
|
|
$this->getElement('code')->addError($this->translate('Code is invalid!'));
|
|
|
|
return false;
|
|
}
|
|
}
|