extern/2FAuth
1
0
Fork 0
mirror of https://github.com/Bubka/2FAuth.git synced 2025-07-26 08:24:34 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
.github
app
Console
Exceptions
Http
Controllers
Auth
Controller.php
GroupController.php
IconController.php
QrCodeController.php
SettingController.php
SinglePageController.php
TwoFAccountController.php
Middleware
Requests
Resources
Kernel.php
Providers
Rules
Services
Group.php
TwoFAccount.php
User.php
bootstrap
config
database
docker
docs
public
resources
routes
storage
tests
.dockerignore
.editorconfig
.env.example
.env.testing
.env.travis
.gitattributes
.gitignore
.styleci.yml
.travis.yml
Dockerfile
LICENSE
README.md
artisan
changelog.md
composer.json
composer.lock
crowdin.yml
jsconfig.json
package-lock.json
package.json
phpunit.xml
server.php
webpack.mix.js
55a47a75f42cdccc05a6469003cc882c8fc4837f
2FAuth/app/Http/Controllers/TwoFAccountController.php

285 lines
7.9 KiB
PHP
Raw Blame History

<?php
namespace App\Http\Controllers;
use App\TwoFAccount;
use App\Exceptions\UndecipherableException;
use App\Http\Requests\TwoFAccountReorderRequest;
use App\Http\Requests\TwoFAccountStoreRequest;
use App\Http\Requests\TwoFAccountUpdateRequest;
use App\Http\Requests\TwoFAccountBatchRequest;
use App\Http\Requests\TwoFAccountUriRequest;
use App\Http\Requests\TwoFAccountDynamicRequest;
use App\Http\Resources\TwoFAccountCollection;
use App\Http\Resources\TwoFAccountReadResource;
use App\Http\Resources\TwoFAccountStoreResource;
use App\Services\GroupService;
use App\Services\TwoFAccountService;
use Illuminate\Support\Arr;
use Illuminate\Http\Request;
class TwoFAccountController extends Controller
{
/**
* The TwoFAccount Service instance.
*/
protected $twofaccountService;
/**
* The Group Service instance.
*/
protected $groupService;
/**
* Create a new controller instance.
*
* @param TwoFAccountService $twofaccountService
* @return void
*/
public function __construct(TwoFAccountService $twofaccountService, GroupService $groupService)
{
$this->twofaccountService = $twofaccountService;
$this->groupService = $groupService;
}
/**
* List all resources
*
* @return \App\Http\Resources\TwoFAccountCollection
*/
public function index(Request $request)
{
return new TwoFAccountCollection(TwoFAccount::ordered()->get());
}
/**
* Display a resource
*
* @param \App\TwoFAccount $twofaccount
*
* @return \App\Http\Resources\TwoFAccountReadResource
*/
public function show(TwoFAccount $twofaccount)
{
return new TwoFAccountReadResource($twofaccount);
}
/**
* Store a newly created resource in storage.
*
* @param \App\Http\Requests\TwoFAccountDynamicRequest $request
* @return \App\Http\Resources\TwoFAccountReadResource
*/
public function store(TwoFAccountDynamicRequest $request)
{
// Two possible cases :
// - The most common case, an URI is provided by the QuickForm, thanks to a QR code live scan or file upload
// -> We use that URI to define the account
// - The advanced form has been used and all individual parameters
// -> We use the parameters array to define the account
$validated = $request->validated();
$twofaccount = Arr::has($validated, 'uri')
? $this->twofaccountService->createFromUri($validated['uri'])
: $this->twofaccountService->createFromParameters($validated);
// Possible group association
$this->groupService->assign($twofaccount->id);
return (new TwoFAccountReadResource($twofaccount))
->response()
->setStatusCode(201);
}
/**
* Update the specified resource in storage.
*
* @param \App\Http\TwoFAccountUpdateRequest $request
* @param \App\TwoFAccount $twofaccount
* @return \Illuminate\Http\Response
*/
public function update(TwoFAccountUpdateRequest $request, TwoFAccount $twofaccount)
{
$validated = $request->validated();
$this->twofaccountService->update($twofaccount, $validated);
return (new TwoFAccountReadResource($twofaccount))
->response()
->setStatusCode(200);
}
/**
* Set new order.
*
* @param App\Http\Requests\TwoFAccountReorderRequest $request
* @return \Illuminate\Http\Response
*/
public function reorder(TwoFAccountReorderRequest $request)
{
$validated = $request->validated();
TwoFAccount::setNewOrder($validated['orderedIds']);
return response()->json(['message' => 'order saved'], 200);
}
/**
* Preview account using an uri, without any db moves
*
* @param \App\Http\Requests\TwoFAccountUriRequest $request
* @return \App\Http\Resources\TwoFAccountStoreResource
*/
public function preview(TwoFAccountUriRequest $request)
{
$twofaccount = $this->twofaccountService->createFromUri($request->uri, false);
return new TwoFAccountStoreResource($twofaccount);
}
/**
* Get a One-Time Password
*
* @param \Illuminate\Http\Request $request
* @param int $id
* @return \Illuminate\Http\Response
*/
public function otp(Request $request, $id = null)
{
$inputs = $request->all();
// The request input is the ID of an existing account
if ( $id ) {
try {
$otp = $this->twofaccountService->getOTP((int) $id);
}
catch (UndecipherableException $ex) {
return response()->json([
'message' => __('errors.cannot_decipher_secret')
], 400);
}
}
// The request input is an uri
else if ( count($inputs) === 1 && $request->has('uri') ) {
$validatedData = $request->validate((new TwoFAccountUriRequest)->rules());
$otp = $this->twofaccountService->getOTP($validatedData['uri']);
}
else if ( count($inputs) > 1 && $request->has('uri')) {
return response()->json([
'message' => 'bad request',
'reason' => ['uri' => __('validation.single', ['attribute' => 'uri'])]
], 400);
}
// The request inputs should define an account
else {
$validatedData = $request->validate((new TwoFAccountStoreRequest)->rules());
$otp = $this->twofaccountService->getOTP($validatedData);
}
return response()->json($otp, 200);
}
/**
* A simple and light method to get the account count.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
*/
public function count(Request $request)
{
return response()->json([ 'count' => TwoFAccount::count() ], 200);
}
/**
*
* Withdraw one or more accounts from their group
*
* @param \App\Http\Requests\TwoFAccountBatchRequest $request
* @return \Illuminate\Http\Response
*/
public function withdraw(TwoFAccountBatchRequest $request)
{
$validated = $request->validated();
if ($this->tooManyIds($validated['ids'])) {
return response()->json([
'message' => 'bad request',
'reason' => [__('errors.too_many_ids')]
], 400);
}
$this->twofaccountService->withdraw($validated['ids']);
return response()->json([ 'message' => 'accounts withdrawn' ], 200);
}
/**
* Remove the specified resource from storage.
*
* @param \App\TwoFAccount $twofaccount
* @return \Illuminate\Http\Response
*/
public function destroy(TwoFAccount $twofaccount)
{
$this->twofaccountService->delete($twofaccount->id);
return response()->json(null, 204);
}
/**
* Remove the specified resources from storage.
*
* @param \App\Http\Requests\TwoFAccountBatchRequest $request
* @return \Illuminate\Http\Response
*/
public function batchDestroy(TwoFAccountBatchRequest $request)
{
$validated = $request->validated();
if ($this->tooManyIds($validated['ids'])) {
return response()->json([
'message' => 'bad request',
'reason' => [__('errors.too_many_ids')]
], 400);
}
$this->twofaccountService->delete($validated['ids']);
return response()->json(null, 204);
}
/**
* Checks ids length
*
* @param string $ids comma-separated ids
* @return bool whether or not the number of ids is acceptable
*/
private function tooManyIds(string $ids) : bool
{
$arIds = explode(',', $ids, 100);
$nb = count($arIds);
return $nb > 99 ? true : false;
}
}
Reference in New Issue View Git Blame Copy Permalink