Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: 8095b9405a
Branches Tags
zammad
/
lib
/
auth
/
two_factor
/
recovery_codes.rb

recovery_codes.rb 1.1 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. class Auth::TwoFactor::RecoveryCodes < Auth::TwoFactor::Method
    4. 

  4.   NUMBER_OF_CODES = 10
    5. 

  5.   CODE_LENGTH = 16
    6. 

  6. 

  7.   def verify(code)
    8. 

  8.     return verify_result(false) if !exists? || code.blank?
    9. 

  9. 

  10.     configuration = user_two_factor_preference_configuration
    11. 

  11. 

  12.     hashed_code = configuration[:codes].detect { |saved_code| PasswordHash.verified?(saved_code, code) }
    13. 

  13.     return verify_result(false) if hashed_code.blank?
    14. 

  14. 

  15.     configuration[:codes].delete(hashed_code)
    16. 

  16. 

  17.     verify_result(true, new_configuration: configuration)
    18. 

  18.   end
    19. 

  19. 

  20.   def generate
    21. 

  21.     codes = []
    22. 

  22. 

  23.     NUMBER_OF_CODES.times do
    24. 

  24.       # The hex string has length 2*n.
    25. 

  25.       codes << SecureRandom.hex(CODE_LENGTH / 2)
    26. 

  26.     end
    27. 

  27. 

  28.     hashed_codes = codes.map { |code| PasswordHash.crypt(code) }
    29. 

  29. 

  30.     create_user_config({ codes: hashed_codes })
    31. 

  31. 

  32.     codes
    33. 

  33.   end
    34. 

  34. 

  35.   def related_setting_name
    36. 

  36.     'two_factor_authentication_recovery_codes'
    37. 

  37.   end
    38. 

  38. 

  39.   def exists?
    40. 

  40.     user_two_factor_preference.present?
    41. 

  41.   end
    42. 

  42. 

  43.   def user_two_factor_preference
    44. 

  44.     user&.two_factor_preferences&.recovery_codes
    45. 

  45.   end
    46. 

  46. end
    47.