Nemcio/Grav-Admin-Plugin
1
0
Fork 0
mirror of https://github.com/getgrav/grav-plugin-admin.git synced 2025-10-29 09:16:48 +01:00
Code Issues Packages Projects Releases Activity

Support for YubiKey OTP 2 factor authenticator

Browse Source
This commit is contained in:
Andy Miller
2022-01-11 12:00:10 -07:00
parent c763004a94
commit 0f05d065b0
7 changed files with 31 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
classes/plugin/Controllers/Login/LoginController.php
View File

@@ -278,8 +278,13 @@ class LoginController extends AdminController
$code = $data['2fa_code'] ?? null;
$secret = $user->twofa_secret ?? null;
$redirect = (string)$this->getRequest()->getUri();
$twofa_valid = $twoFa->verifyCode($secret, $code);
if (null === $twoFa || !$user->authenticated || !$code || !$secret || !$twoFa->verifyCode($secret, $code)) {
$yubikey_otp = $data['yubikey_otp'] ?? null;
$yubikey_id = $user->yubikey_id ?? null;
$yubikey_valid = $twoFa->verifyYubikeyOTP($yubikey_id, $yubikey_otp);
if (null === $twoFa || !$user->authenticated || (!$twofa_valid && !$yubikey_valid) ) {
Admin::DEBUG && Admin::addDebugMessage('Admin login: 2FA check failed, log out!');
// Failed 2FA auth, logout and redirect to the current page.