mirror of
https://github.com/Bubka/2FAuth.git
synced 2024-12-25 16:39:13 +01:00
64 lines
1.6 KiB
PHP
64 lines
1.6 KiB
PHP
<?php
|
|
|
|
namespace App\Extensions;
|
|
|
|
use App\Models\WebAuthnAuthenticatable;
|
|
use Closure;
|
|
use Illuminate\Auth\Passwords\PasswordBroker;
|
|
use Illuminate\Contracts\Auth\CanResetPassword as CanResetPasswordContract;
|
|
use Illuminate\Support\Facades\Log;
|
|
|
|
class WebauthnCredentialBroker extends PasswordBroker
|
|
{
|
|
/**
|
|
* Send a password reset link to a user.
|
|
*/
|
|
public function sendResetLink(array $credentials, ?Closure $callback = null) : string
|
|
{
|
|
/**
|
|
* @var \App\Models\User
|
|
*/
|
|
$user = $this->getUser($credentials);
|
|
|
|
if (! $user instanceof WebAuthnAuthenticatable) {
|
|
return static::INVALID_USER;
|
|
}
|
|
|
|
if ($this->tokens->recentlyCreatedToken($user)) {
|
|
return static::RESET_THROTTLED;
|
|
}
|
|
|
|
$token = $this->tokens->create($user);
|
|
|
|
if ($callback) {
|
|
$callback($user, $token); // @codeCoverageIgnore
|
|
} else {
|
|
$user->sendWebauthnRecoveryNotification($token);
|
|
}
|
|
|
|
Log::notice(sprintf('Webauthn recovery email sent to user ID #%s', $user->id));
|
|
|
|
return static::RESET_LINK_SENT;
|
|
}
|
|
|
|
/**
|
|
* Reset the password for the given token.
|
|
*
|
|
* @return \Illuminate\Contracts\Auth\CanResetPassword|string
|
|
*/
|
|
public function reset(array $credentials, Closure $callback)
|
|
{
|
|
$user = $this->validateReset($credentials);
|
|
|
|
if (! $user instanceof CanResetPasswordContract || ! $user instanceof WebAuthnAuthenticatable) {
|
|
return $user;
|
|
}
|
|
|
|
$callback($user);
|
|
|
|
$this->tokens->delete($user);
|
|
|
|
return static::PASSWORD_RESET;
|
|
}
|
|
}
|