226 lines
6.1 KiB
PHP
226 lines
6.1 KiB
PHP
<?php
|
|
|
|
namespace App\Livewire\Settings;
|
|
|
|
use App\Concerns\PasswordValidationRules;
|
|
use Exception;
|
|
use Flux\Flux;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Validation\ValidationException;
|
|
use Laravel\Fortify\Actions\ConfirmTwoFactorAuthentication;
|
|
use Laravel\Fortify\Actions\DisableTwoFactorAuthentication;
|
|
use Laravel\Fortify\Actions\EnableTwoFactorAuthentication;
|
|
use Laravel\Fortify\Features;
|
|
use Laravel\Fortify\Fortify;
|
|
use Livewire\Attributes\Locked;
|
|
use Livewire\Attributes\Title;
|
|
use Livewire\Attributes\Validate;
|
|
use Livewire\Component;
|
|
|
|
#[Title('Security settings')]
|
|
class Security extends Component
|
|
{
|
|
use PasswordValidationRules;
|
|
|
|
public string $current_password = '';
|
|
|
|
public string $password = '';
|
|
|
|
public string $password_confirmation = '';
|
|
|
|
#[Locked]
|
|
public bool $canManageTwoFactor;
|
|
|
|
#[Locked]
|
|
public bool $twoFactorEnabled;
|
|
|
|
#[Locked]
|
|
public bool $requiresConfirmation;
|
|
|
|
#[Locked]
|
|
public string $qrCodeSvg = '';
|
|
|
|
#[Locked]
|
|
public string $manualSetupKey = '';
|
|
|
|
public bool $showModal = false;
|
|
|
|
public bool $showVerificationStep = false;
|
|
|
|
#[Validate('required|string|size:6', onUpdate: false)]
|
|
public string $code = '';
|
|
|
|
/**
|
|
* Mount the component.
|
|
*/
|
|
public function mount(DisableTwoFactorAuthentication $disableTwoFactorAuthentication): void
|
|
{
|
|
$this->canManageTwoFactor = Features::canManageTwoFactorAuthentication();
|
|
|
|
if ($this->canManageTwoFactor) {
|
|
if (Fortify::confirmsTwoFactorAuthentication() && is_null(auth()->user()->two_factor_confirmed_at)) {
|
|
$disableTwoFactorAuthentication(auth()->user());
|
|
}
|
|
|
|
$this->twoFactorEnabled = auth()->user()->hasEnabledTwoFactorAuthentication();
|
|
$this->requiresConfirmation = Features::optionEnabled(Features::twoFactorAuthentication(), 'confirm');
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Update the password for the currently authenticated user.
|
|
*/
|
|
public function updatePassword(): void
|
|
{
|
|
try {
|
|
$validated = $this->validate([
|
|
'current_password' => $this->currentPasswordRules(),
|
|
'password' => $this->passwordRules(),
|
|
]);
|
|
} catch (ValidationException $e) {
|
|
$this->reset('current_password', 'password', 'password_confirmation');
|
|
|
|
throw $e;
|
|
}
|
|
|
|
Auth::user()->update([
|
|
'password' => $validated['password'],
|
|
]);
|
|
|
|
$this->reset('current_password', 'password', 'password_confirmation');
|
|
|
|
Flux::toast(variant: 'success', text: __('Password updated.'));
|
|
}
|
|
|
|
/**
|
|
* Enable two-factor authentication for the user.
|
|
*/
|
|
public function enable(EnableTwoFactorAuthentication $enableTwoFactorAuthentication): void
|
|
{
|
|
$enableTwoFactorAuthentication(auth()->user());
|
|
|
|
if (! $this->requiresConfirmation) {
|
|
$this->twoFactorEnabled = auth()->user()->hasEnabledTwoFactorAuthentication();
|
|
}
|
|
|
|
$this->loadSetupData();
|
|
|
|
$this->showModal = true;
|
|
}
|
|
|
|
/**
|
|
* Load the two-factor authentication setup data for the user.
|
|
*/
|
|
private function loadSetupData(): void
|
|
{
|
|
$user = auth()->user();
|
|
|
|
try {
|
|
$this->qrCodeSvg = $user?->twoFactorQrCodeSvg();
|
|
$this->manualSetupKey = decrypt($user->two_factor_secret);
|
|
} catch (Exception) {
|
|
$this->addError('setupData', 'Failed to fetch setup data.');
|
|
|
|
$this->reset('qrCodeSvg', 'manualSetupKey');
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Show the two-factor verification step if necessary.
|
|
*/
|
|
public function showVerificationIfNecessary(): void
|
|
{
|
|
if ($this->requiresConfirmation) {
|
|
$this->showVerificationStep = true;
|
|
|
|
$this->resetErrorBag();
|
|
|
|
return;
|
|
}
|
|
|
|
$this->closeModal();
|
|
}
|
|
|
|
/**
|
|
* Close the two-factor authentication modal.
|
|
*/
|
|
public function closeModal(): void
|
|
{
|
|
$this->reset(
|
|
'code',
|
|
'manualSetupKey',
|
|
'qrCodeSvg',
|
|
'showModal',
|
|
'showVerificationStep',
|
|
);
|
|
|
|
$this->resetErrorBag();
|
|
|
|
if (! $this->requiresConfirmation) {
|
|
$this->twoFactorEnabled = auth()->user()->hasEnabledTwoFactorAuthentication();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Confirm two-factor authentication for the user.
|
|
*/
|
|
public function confirmTwoFactor(ConfirmTwoFactorAuthentication $confirmTwoFactorAuthentication): void
|
|
{
|
|
$this->validate();
|
|
|
|
$confirmTwoFactorAuthentication(auth()->user(), $this->code);
|
|
|
|
$this->closeModal();
|
|
|
|
$this->twoFactorEnabled = true;
|
|
}
|
|
|
|
/**
|
|
* Reset two-factor verification state.
|
|
*/
|
|
public function resetVerification(): void
|
|
{
|
|
$this->reset('code', 'showVerificationStep');
|
|
|
|
$this->resetErrorBag();
|
|
}
|
|
|
|
/**
|
|
* Disable two-factor authentication for the user.
|
|
*/
|
|
public function disable(DisableTwoFactorAuthentication $disableTwoFactorAuthentication): void
|
|
{
|
|
$disableTwoFactorAuthentication(auth()->user());
|
|
|
|
$this->twoFactorEnabled = false;
|
|
}
|
|
|
|
/**
|
|
* Get the current modal configuration state.
|
|
*/
|
|
public function getModalConfigProperty(): array
|
|
{
|
|
if ($this->twoFactorEnabled) {
|
|
return [
|
|
'title' => __('Two-factor authentication enabled'),
|
|
'description' => __('Two-factor authentication is now enabled. Scan the QR code or enter the setup key in your authenticator app.'),
|
|
'buttonText' => __('Close'),
|
|
];
|
|
}
|
|
|
|
if ($this->showVerificationStep) {
|
|
return [
|
|
'title' => __('Verify authentication code'),
|
|
'description' => __('Enter the 6-digit code from your authenticator app.'),
|
|
'buttonText' => __('Continue'),
|
|
];
|
|
}
|
|
|
|
return [
|
|
'title' => __('Enable two-factor authentication'),
|
|
'description' => __('To finish enabling two-factor authentication, scan the QR code or enter the setup key in your authenticator app.'),
|
|
'buttonText' => __('Continue'),
|
|
];
|
|
}
|
|
}
|