streams/Code/Module/Totp_check.php

<?php

namespace Code\Module;

use App;
use Code\Render\Theme;
use Code\Web\Controller;
use OTPHP\TOTP;

class Totp_check extends Controller
{

    public function post()
    {
        $retval = ['status' => false];

        $account = App::get_account();
        if (!$account) {
            json_return_and_die($retval);
        }
        $secret = $account['account_external'];
        $input = (isset($_POST['totp_code'])) ? trim($_POST['totp_code']) : '';

        if ($secret && $input) {
            $otp = TOTP::create($secret); // create TOTP object from the secret.
            if ($otp->verify($_POST['totp_code']) || $input === $secret ) {
                logger('otp_success');
                $_SESSION['2FA_VERIFIED'] = true;
                $retval['status'] = true;
                json_return_and_die($retval);
            }
            logger('otp_fail');
        }
        json_return_and_die($retval);
    }

    public function get() {
        $account = App::get_account();
        if (!$account) {
            return t('Account not found.');
        }

        return replace_macros(Theme::get_template('totp.tpl'),
            [
                '$header' => t('Multifactor Verification'),
                '$desc'   => t('Please enter the verification key from your authenticator app'),
                '$success' => t('Success!'),
                '$fail' => t('Invalid code, please try again.'),
                '$maxfails' => t('Too many invalid codes...'),
                '$submit' => t('Verify')
            ]
        );
    }
}
mfa update 2023-03-04 04:43:05 +00:00			`<?php`

			`namespace Code\Module;`

			`use App;`
			`use Code\Render\Theme;`
			`use Code\Web\Controller;`
			`use OTPHP\TOTP;`

push up some more multifactor work 2023-03-04 05:44:40 +00:00			`class Totp_check extends Controller`
			`{`
mfa update 2023-03-04 04:43:05 +00:00
cleanup 2023-03-05 18:14:32 +00:00			`public function post()`
push up some more multifactor work 2023-03-04 05:44:40 +00:00			`{`
mfa update 2023-03-04 04:43:05 +00:00			`$retval = ['status' => false];`

			`$account = App::get_account();`
			`if (!$account) {`
			`json_return_and_die($retval);`
			`}`
			`$secret = $account['account_external'];`
mfa cont. 2023-03-05 06:09:14 +00:00			`$input = (isset($_POST['totp_code'])) ? trim($_POST['totp_code']) : '';`
mfa update 2023-03-04 04:43:05 +00:00
mfa cont. 2023-03-05 06:09:14 +00:00			`if ($secret && $input) {`
mfa update 2023-03-04 04:43:05 +00:00			`$otp = TOTP::create($secret); // create TOTP object from the secret.`
mfa cont. 2023-03-05 06:09:14 +00:00			`if ($otp->verify($_POST['totp_code']) \|\| $input === $secret ) {`
			`logger('otp_success');`
push up some more multifactor work 2023-03-04 05:44:40 +00:00			`$_SESSION['2FA_VERIFIED'] = true;`
			`$retval['status'] = true;`
			`json_return_and_die($retval);`
mfa update 2023-03-04 04:43:05 +00:00			`}`
mfa cont. 2023-03-05 06:09:14 +00:00			`logger('otp_fail');`
push up some more multifactor work 2023-03-04 05:44:40 +00:00			`}`
			`json_return_and_die($retval);`
mfa update 2023-03-04 04:43:05 +00:00			`}`

cleanup 2023-03-05 18:14:32 +00:00			`public function get() {`
mfa update 2023-03-04 04:43:05 +00:00			`$account = App::get_account();`
push up some more multifactor work 2023-03-04 05:44:40 +00:00			`if (!$account) {`
			`return t('Account not found.');`
			`}`
cleanup 2023-03-05 18:14:32 +00:00
push up some more multifactor work 2023-03-04 05:44:40 +00:00			`return replace_macros(Theme::get_template('totp.tpl'),`
mfa update 2023-03-04 04:43:05 +00:00			`[`
more mfa updates 2023-03-04 09:36:54 +00:00			`'$header' => t('Multifactor Verification'),`
			`'$desc' => t('Please enter the verification key from your authenticator app'),`
mfa update 2023-03-04 04:43:05 +00:00			`'$success' => t('Success!'),`
			`'$fail' => t('Invalid code, please try again.'),`
			`'$maxfails' => t('Too many invalid codes...'),`
			`'$submit' => t('Verify')`
push up some more multifactor work 2023-03-04 05:44:40 +00:00			`]`
			`);`
mfa update 2023-03-04 04:43:05 +00:00			`}`
			`}`