2022-03-15 14:47:07 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace App\Http\Controllers\Auth;
|
|
|
|
|
2022-08-10 18:39:41 +02:00
|
|
|
use App\Facades\Settings;
|
2022-03-15 14:47:07 +01:00
|
|
|
use App\Http\Controllers\Controller;
|
|
|
|
use Illuminate\Http\Request;
|
|
|
|
use App\Http\Requests\WebauthnRenameRequest;
|
|
|
|
use DarkGhostHunter\Larapass\Eloquent\WebAuthnCredential;
|
|
|
|
|
|
|
|
class WebAuthnManageController extends Controller
|
|
|
|
{
|
|
|
|
/*
|
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
| WebAuthn Manage Controller
|
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Create a new controller instance.
|
|
|
|
*/
|
|
|
|
public function __construct()
|
|
|
|
{
|
|
|
|
}
|
2022-03-24 15:07:18 +01:00
|
|
|
|
2022-03-15 14:47:07 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* List all WebAuthn registered credentials
|
2022-08-26 15:57:18 +02:00
|
|
|
*
|
|
|
|
* @return \Illuminate\Http\JsonResponse
|
2022-03-15 14:47:07 +01:00
|
|
|
*/
|
|
|
|
public function index(Request $request)
|
|
|
|
{
|
|
|
|
$user = $request->user();
|
|
|
|
$allUserCredentials = $user->webAuthnCredentials()
|
|
|
|
->enabled()
|
|
|
|
->get()
|
|
|
|
->all();
|
|
|
|
|
|
|
|
return response()->json($allUserCredentials, 200);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Rename a WebAuthn device
|
|
|
|
*
|
|
|
|
* @param \App\Http\Requests\WebauthnRenameRequest $request
|
|
|
|
* @return \Illuminate\Http\JsonResponse
|
|
|
|
*/
|
|
|
|
public function rename(WebauthnRenameRequest $request, string $credential)
|
|
|
|
{
|
|
|
|
$validated = $request->validated();
|
|
|
|
|
|
|
|
$webAuthnCredential = WebAuthnCredential::where('id', $credential)->firstOrFail();
|
2022-09-07 17:54:27 +02:00
|
|
|
$webAuthnCredential->name = $validated['name']; // @phpstan-ignore-line
|
2022-03-15 14:47:07 +01:00
|
|
|
$webAuthnCredential->save();
|
|
|
|
|
|
|
|
return response()->json([
|
|
|
|
'name' => $webAuthnCredential->name,
|
|
|
|
], 200);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Remove the specified credential from storage.
|
2022-03-29 15:02:43 +02:00
|
|
|
*
|
|
|
|
* @param \Illuminate\Http\Request $request
|
|
|
|
* @param string|array $credential
|
2022-03-15 14:47:07 +01:00
|
|
|
*
|
|
|
|
* @return \Illuminate\Http\JsonResponse
|
|
|
|
*/
|
|
|
|
public function delete(Request $request, $credential)
|
|
|
|
{
|
|
|
|
$user = $request->user();
|
|
|
|
$user->removeCredential($credential);
|
|
|
|
|
2022-08-10 18:39:41 +02:00
|
|
|
// Webauthn user options should be reset to prevent impossible login
|
|
|
|
// See #110
|
|
|
|
if (blank($user->allCredentialDescriptors())) {
|
|
|
|
Settings::delete('useWebauthnAsDefault');
|
|
|
|
Settings::delete('useWebauthnOnly');
|
|
|
|
}
|
|
|
|
|
2022-03-15 14:47:07 +01:00
|
|
|
return response()->json(null, 204);
|
|
|
|
}
|
|
|
|
}
|