mirror of
https://github.com/Bubka/2FAuth.git
synced 2024-11-23 00:33:18 +01:00
67 lines
1.6 KiB
PHP
67 lines
1.6 KiB
PHP
|
<?php
|
||
|
|
|
||
|
|
namespace App\Extensions;
|
||
|
|
|
||
|
|
use Closure;
|
||
|
|
use App\Models\WebAuthnAuthenticatable;
|
||
|
|
use Illuminate\Auth\Passwords\PasswordBroker;
|
||
|
|
use Illuminate\Contracts\Auth\CanResetPassword as CanResetPasswordContract;
|
||
|
|
|
||
|
|
class WebauthnCredentialBroker extends PasswordBroker
|
||
|
|
{
|
||
|
|
/**
|
||
|
|
* Send a password reset link to a user.
|
||
|
|
*
|
||
|
|
* @param array $credentials
|
||
|
|
* @param \Closure|null $callback
|
||
|
|
*
|
||
|
|
* @return string
|
||
|
|
*/
|
||
|
|
public function sendResetLink(array $credentials, Closure $callback = null): string
|
||
|
|
{
|
||
|
|
$user = $this->getUser($credentials);
|
||
|
|
|
||
|
|
if (!$user instanceof WebAuthnAuthenticatable) {
|
||
|
|
return static::INVALID_USER;
|
||
|
|
}
|
||
|
|
|
||
|
|
if ($this->tokens->recentlyCreatedToken($user)) {
|
||
|
|
return static::RESET_THROTTLED;
|
||
|
|
}
|
||
|
|
|
||
|
|
$token = $this->tokens->create($user);
|
||
|
|
|
||
|
|
if ($callback) {
|
||
|
|
$callback($user, $token);
|
||
|
|
} else {
|
||
|
|
$user->sendWebauthnRecoveryNotification($token);
|
||
|
|
}
|
||
|
|
|
||
|
|
return static::RESET_LINK_SENT;
|
||
|
|
}
|
||
|
|
|
||
|
|
|
||
|
|
/**
|
||
|
|
* Reset the password for the given token.
|
||
|
|
*
|
||
|
|
* @param array $credentials
|
||
|
|
* @param \Closure $callback
|
||
|
|
*
|
||
|
|
* @return \Illuminate\Contracts\Auth\CanResetPassword|string
|
||
|
|
*/
|
||
|
|
public function reset(array $credentials, Closure $callback)
|
||
|
|
{
|
||
|
|
$user = $this->validateReset($credentials);
|
||
|
|
|
||
|
|
if (!$user instanceof CanResetPasswordContract || !$user instanceof WebAuthnAuthenticatable) {
|
||
|
|
return $user;
|
||
|
|
}
|
||
|
|
|
||
|
|
$callback($user);
|
||
|
|
|
||
|
|
$this->tokens->delete($user);
|
||
|
|
|
||
|
|
return static::PASSWORD_RESET;
|
||
|
|
}
|
||
|
|
}
|