extern/2FAuth
1
0
Fork 0
mirror of https://github.com/Bubka/2FAuth.git synced 2024-11-23 16:53:26 +01:00
Code Issues Packages Projects Releases Wiki Activity
c30eae99fa
2FAuth/resources/js/views/settings/WebAuthn.vue

197 lines
8.4 KiB
Vue
Raw Normal View History

Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
<template>
<div>
Close #96 - Set unique page titles
2022-07-07 18:04:04 +02:00
<setting-tabs :activeTab="'settings.webauthn.devices'"></setting-tabs>
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
<div class="options-tabs">
<form-wrapper>
Fix and complete reverse-proxy support & Adjust front-end views
2022-03-24 14:58:30 +01:00
<div v-if="isRemoteUser" class="notification is-warning has-text-centered" v-html="$t('auth.auth_handled_by_proxy')" />
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
<h4 class="title is-4 has-text-grey-light">{{ $t('auth.webauthn.security_devices') }}</h4>
<div class="is-size-7-mobile">
{{ $t('auth.webauthn.security_devices_legend')}}
</div>
<div class="mt-3">
<a class="is-link" @click="register()">
<font-awesome-icon :icon="['fas', 'plus-circle']" /> {{ $t('auth.webauthn.register_a_new_device')}}
</a>
</div>
<!-- credentials list -->
<div v-if="credentials.length > 0" class="field">
<div v-for="credential in credentials" :key="credential.id" class="group-item has-text-light is-size-5 is-size-6-mobile">
{{ displayName(credential) }}
<!-- revoke link -->
<a class="tag is-dark is-pulled-right" @click="revokeCredential(credential.id)" :title="$t('settings.revoke')">
{{ $t('settings.revoke') }}
</a>
<!-- edit link -->
<!-- <router-link :to="{ name: '' }" class="has-text-grey pl-1" :title="$t('commons.rename')">
<font-awesome-icon :icon="['fas', 'pen-square']" />
</router-link> -->
</div>
<div class="mt-2 is-size-7 is-pulled-right">
{{ $t('auth.webauthn.revoking_a_device_is_permanent')}}
</div>
</div>
<div v-if="isFetching && credentials.length === 0" class="has-text-centered mt-6">
<span class="is-size-4">
<font-awesome-icon :icon="['fas', 'spinner']" spin />
</span>
</div>
<h4 class="title is-4 pt-6 has-text-grey-light">{{ $t('settings.options') }}</h4>
Disable webauthn options unless one device is registered
2022-04-06 09:48:07 +02:00
<div class="field is-size-7-mobile">
{{ $t('auth.webauthn.need_a_security_device_to_enable_options')}}
</div>
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
<form>
<!-- use webauthn only -->
Disable webauthn options unless one device is registered
2022-04-06 09:48:07 +02:00
<form-checkbox v-on:useWebauthnOnly="saveSetting('useWebauthnOnly', $event)" :form="form" fieldName="useWebauthnOnly" :label="$t('auth.webauthn.use_webauthn_only.label')" :help="$t('auth.webauthn.use_webauthn_only.help')" :disabled="isRemoteUser || credentials.length === 0" />
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
<!-- default sign in method -->
Disable webauthn options unless one device is registered
2022-04-06 09:48:07 +02:00
<form-checkbox v-on:useWebauthnAsDefault="saveSetting('useWebauthnAsDefault', $event)" :form="form" fieldName="useWebauthnAsDefault" :label="$t('auth.webauthn.use_webauthn_as_default.label')" :help="$t('auth.webauthn.use_webauthn_as_default.help')" :disabled="isRemoteUser || credentials.length === 0" />
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
</form>
<!-- footer -->
<vue-footer :showButtons="true">
<!-- close button -->
<p class="control">
<router-link :to="{ name: 'accounts', params: { toRefresh: false } }" class="button is-dark is-rounded">{{ $t('commons.close') }}</router-link>
</p>
</vue-footer>
</form-wrapper>
</div>
</div>
</template>
<script>
import Form from './../../components/Form'
export default {
data(){
return {
form: new Form({
useWebauthnOnly: null,
useWebauthnAsDefault: null,
}),
credentials: [],
isFetching: false,
Fix and complete reverse-proxy support & Adjust front-end views
2022-03-24 14:58:30 +01:00
isRemoteUser: false,
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
}
},
async mounted() {
Code cleaning
2022-03-24 15:07:18 +01:00
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
const { data } = await this.form.get('/api/v1/settings')
this.form.fillWithKeyValueObject(data)
this.form.setOriginal()
this.fetchCredentials()
},
methods : {
/**
* Save a setting
*/
saveSetting(settingName, event) {
this.axios.put('/api/v1/settings/' + settingName, { value: event }).then(response => {
this.$notify({ type: 'is-success', text: this.$t('settings.forms.setting_saved') })
this.$root.appSettings[response.data.key] = response.data.value
})
},
/**
* Get all credentials from backend
*/
async fetchCredentials() {
this.isFetching = true
Refactor routes rejection using middlewares
2022-03-29 15:02:43 +02:00
await this.axios.get('/webauthn/credentials', {returnError: true})
.then(response => {
this.credentials = response.data
})
.catch(error => {
if( error.response.status === 400 ) {
Fix and complete reverse-proxy support & Adjust front-end views
2022-03-24 14:58:30 +01:00
this.isRemoteUser = true
}
Refactor routes rejection using middlewares
2022-03-29 15:02:43 +02:00
else {
this.$router.push({ name: 'genericError', params: { err: error.response } });
}
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
})
this.isFetching = false
},
/**
* Register a new security device
*/
async register() {
Fix and complete reverse-proxy support & Adjust front-end views
2022-03-24 14:58:30 +01:00
if (this.isRemoteUser) {
this.$notify({ type: 'is-warning', text: this.$t('errors.unsupported_with_reverseproxy') })
return false
}
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
// Check https context
if (!window.isSecureContext) {
this.$notify({ type: 'is-danger', text: this.$t('errors.https_required') })
return false
}
// Check browser support
if (!window.PublicKeyCredential) {
this.$notify({ type: 'is-danger', text: this.$t('errors.browser_does_not_support_webauthn') })
return false
}
const registerOptions = await this.axios.post('/webauthn/register/options').then(res => res.data)
const publicKey = this.parseIncomingServerOptions(registerOptions)
let bufferedCredentials
try {
bufferedCredentials = await navigator.credentials.create({ publicKey })
}
catch (error) {
if (error.name == 'AbortError') {
this.$notify({ type: 'is-warning', text: this.$t('errors.aborted_by_user') })
}
else if (error.name == 'NotAllowedError' || 'InvalidStateError') {
this.$notify({ type: 'is-danger', text: this.$t('errors.security_device_unsupported') })
}
return false
}
const publicKeyCredential = this.parseOutgoingCredentials(bufferedCredentials);
this.axios.post('/webauthn/register', publicKeyCredential).then(response => {
this.$notify({ type: 'is-success', text: this.$t('auth.webauthn.device_successfully_registered') })
Fix missing version in vue footer
2022-03-28 17:09:29 +02:00
this.$router.push({ name: 'settings.webauthn.editCredential', params: { id: publicKeyCredential.id, name: this.$t('auth.webauthn.my_device') } })
Add WebAuthn authentication
2022-03-15 14:47:07 +01:00
})
},
/**
* revoke a credential
*/
async revokeCredential(credentialId) {
if(confirm(this.$t('auth.confirm.revoke_device'))) {
await this.axios.delete('/webauthn/credentials/' + credentialId).then(response => {
// Remove the revoked credential from the collection
this.credentials = this.credentials.filter(a => a.id !== credentialId)
this.$notify({ type: 'is-success', text: this.$t('auth.webauthn.device_revoked') })
});
}
},
/**
* Always display a printable name
*/
displayName(credential) {
return credential.name ? credential.name : this.$t('auth.webauthn.my_device') + ' (#' + credential.id.substring(0, 10) + ')'
},
},
}
</script>
Reference in New Issue Copy Permalink