mirror/php-auth
1
0
Fork 0
mirror of https://github.com/delight-im/PHP-Auth.git synced 2025-08-04 15:17:28 +02:00
Code Issues Releases Wiki Activity

Create four methods 'Auth#hasTwoFactor*' to check if user has 2FA

Browse Source
This commit is contained in:
Marco
2024-08-29 13:50:21 +02:00
parent 663268c712
commit df31a85e4a
1 changed files with 100 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

100
src/Auth.php
View File

@@ -2436,6 +2436,106 @@ final class Auth extends UserManager {
return $this->ipAddress; return $this->ipAddress;
} }
/**
* Returns whether the currently signed-in user has enabled two-factor authentification
*
* @return bool
* @throws AuthError if an internal problem occurred (do *not* catch)
*/
public function hasTwoFactor() {
if ($this->isLoggedIn()) {
try {
$enabled = $this->db->selectValue(
'SELECT COUNT(*) FROM ' . $this->makeTableName('users_2fa') . ' WHERE user_id = ? AND expires_at IS NULL',
[ $this->getUserId() ]
);
}
catch (Error $e) {
throw new DatabaseError($e->getMessage());
}
return ((int) $enabled) > 0;
}
else {
return false;
}
}
/**
* Returns whether the currently signed-in user has enabled two-factor authentification via time-based one-time passwords (TOTP)
*
* @return bool
* @throws AuthError if an internal problem occurred (do *not* catch)
*/
public function hasTwoFactorViaTotp() {
if ($this->isLoggedIn()) {
try {
$enabled = $this->db->selectValue(
'SELECT COUNT(*) FROM ' . $this->makeTableName('users_2fa') . ' WHERE user_id = ? AND mechanism = ? AND expires_at IS NULL',
[ $this->getUserId(), self::TWO_FACTOR_MECHANISM_TOTP ]
);
}
catch (Error $e) {
throw new DatabaseError($e->getMessage());
}
return ((int) $enabled) > 0;
}
else {
return false;
}
}
/**
* Returns whether the currently signed-in user has enabled two-factor authentification with one-time passwords sent via SMS
*
* @return bool
* @throws AuthError if an internal problem occurred (do *not* catch)
*/
public function hasTwoFactorViaSms() {
if ($this->isLoggedIn()) {
try {
$enabled = $this->db->selectValue(
'SELECT COUNT(*) FROM ' . $this->makeTableName('users_2fa') . ' WHERE user_id = ? AND mechanism = ? AND expires_at IS NULL',
[ $this->getUserId(), self::TWO_FACTOR_MECHANISM_SMS ]
);
}
catch (Error $e) {
throw new DatabaseError($e->getMessage());
}
return ((int) $enabled) > 0;
}
else {
return false;
}
}
/**
* Returns whether the currently signed-in user has enabled two-factor authentification with one-time passwords sent via email
*
* @return bool
* @throws AuthError if an internal problem occurred (do *not* catch)
*/
public function hasTwoFactorViaEmail() {
if ($this->isLoggedIn()) {
try {
$enabled = $this->db->selectValue(
'SELECT COUNT(*) FROM ' . $this->makeTableName('users_2fa') . ' WHERE user_id = ? AND mechanism = ? AND expires_at IS NULL',
[ $this->getUserId(), self::TWO_FACTOR_MECHANISM_EMAIL ]
);
}
catch (Error $e) {
throw new DatabaseError($e->getMessage());
}
return ((int) $enabled) > 0;
}
else {
return false;
}
}
/** /**
* Returns whether we are waiting for the user to complete the second factor of (two-factor) authentification, them having successfully completed the first factor before * Returns whether we are waiting for the user to complete the second factor of (two-factor) authentification, them having successfully completed the first factor before
* *