bitwarden/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server synced 2025-12-13 23:03:36 +00:00
Code Issues Releases Wiki Activity
Files
c41a1e093608503d91ea7db30bb0ec6f51e24631
server/src/Core/Identity/AuthenticatorTokenProvider.cs
Kyle Spearrin c41a1e0936 CanAccessPremium checks instead of User.Premium
2018-08-28 16:23:58 -04:00

47 lines
1.6 KiB
C#
Raw Blame History

using System;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Identity;
using Bit.Core.Models.Table;
using Bit.Core.Enums;
using OtpNet;
using Bit.Core.Services;
namespace Bit.Core.Identity
{
public class AuthenticatorTokenProvider : IUserTwoFactorTokenProvider<User>
{
private readonly IUserService _userService;
public AuthenticatorTokenProvider(IUserService userService)
{
_userService = userService;
}
public async Task<bool> CanGenerateTwoFactorTokenAsync(UserManager<User> manager, User user)
{
var provider = user.GetTwoFactorProvider(TwoFactorProviderType.Authenticator);
if(string.IsNullOrWhiteSpace((string)provider.MetaData["Key"]))
{
return false;
}
return await user.TwoFactorProviderIsEnabledAsync(TwoFactorProviderType.Authenticator, _userService);
}
public Task<string> GenerateAsync(string purpose, UserManager<User> manager, User user)
{
return Task.FromResult<string>(null);
}
public Task<bool> ValidateAsync(string purpose, string token, UserManager<User> manager, User user)
{
var provider = user.GetTwoFactorProvider(TwoFactorProviderType.Authenticator);
var otp = new Totp(Base32Encoding.ToBytes((string)provider.MetaData["Key"]));
long timeStepMatched;
var valid = otp.VerifyTotp(token, out timeStepMatched, new VerificationWindow(1, 1));
return Task.FromResult(valid);
}
}
}
Reference in New Issue View Git Blame Copy Permalink