Add WebAuthn authentication

2025-08-09 05:54:34 +02:00 · 2022-03-15 14:47:07 +01:00
parent 9f574feada
commit f3c6b9da5b
43 changed files with 2417 additions and 229 deletions
--- a/app/Http/Controllers/Auth/WebAuthnManageController.php
+++ b/app/Http/Controllers/Auth/WebAuthnManageController.php
@ -0,0 +1,78 @@
+<?php
+
+namespace App\Http\Controllers\Auth;
+
+use App\Http\Controllers\Controller;
+use Illuminate\Http\Request;
+use App\Http\Requests\WebauthnRenameRequest;
+use DarkGhostHunter\Larapass\Eloquent\WebAuthnCredential;
+
+class WebAuthnManageController extends Controller
+{
+    // use RecoversWebAuthn;
+
+    /*
+    |--------------------------------------------------------------------------
+    | WebAuthn Manage Controller
+    |--------------------------------------------------------------------------
+    |
+    |
+    */
+
+    /**
+     * Create a new controller instance.
+     *
+     * @return void
+     */
+    public function __construct()
+    {
+        
+    }
+
+    /**
+     * List all WebAuthn registered credentials
+     */
+    public function index(Request $request)
+    {
+        $user = $request->user();
+        $allUserCredentials = $user->webAuthnCredentials()
+                                    ->enabled()
+                                    ->get()
+                                    ->all();
+
+        return response()->json($allUserCredentials, 200);
+    }
+
+
+    /**
+     * Rename a WebAuthn device
+     * 
+     * @param \App\Http\Requests\WebauthnRenameRequest $request
+     * @return \Illuminate\Http\JsonResponse
+     */
+    public function rename(WebauthnRenameRequest $request, string $credential)
+    {
+        $validated = $request->validated();
+
+        $webAuthnCredential = WebAuthnCredential::where('id', $credential)->firstOrFail();
+        $webAuthnCredential->name = $validated['name'];
+        $webAuthnCredential->save();
+
+        return response()->json([
+            'name' => $webAuthnCredential->name,
+        ], 200);
+    }
+
+    /**
+     * Remove the specified credential from storage.
+     *
+     * @return \Illuminate\Http\JsonResponse
+     */
+    public function delete(Request $request, $credential)
+    {
+        $user = $request->user();
+        $user->removeCredential($credential);
+
+        return response()->json(null, 204);
+    }
+}