| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  | <?php | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * AuthenticateTwoFactor.php | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * Copyright (c) 2017 thegrumpydictator@gmail.com | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |  * | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * This file is part of Firefly III. | 
					
						
							| 
									
										
										
										
											2016-10-05 06:52:15 +02:00
										 |  |  |  * | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * Firefly III is free software: you can redistribute it and/or modify | 
					
						
							|  |  |  |  * it under the terms of the GNU General Public License as published by | 
					
						
							|  |  |  |  * the Free Software Foundation, either version 3 of the License, or | 
					
						
							|  |  |  |  * (at your option) any later version. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * Firefly III is distributed in the hope that it will be useful, | 
					
						
							|  |  |  |  * but WITHOUT ANY WARRANTY; without even the implied warranty of | 
					
						
							|  |  |  |  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the | 
					
						
							|  |  |  |  * GNU General Public License for more details. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * You should have received a copy of the GNU General Public License | 
					
						
							| 
									
										
										
										
											2017-12-17 14:44:05 +01:00
										 |  |  |  * along with Firefly III. If not, see <http://www.gnu.org/licenses/>. | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |  */ | 
					
						
							| 
									
										
										
										
											2018-07-08 07:59:58 +02:00
										 |  |  | /** @noinspection PhpMethodParametersCountMismatchInspection */ | 
					
						
							| 
									
										
										
										
											2017-04-09 07:44:22 +02:00
										 |  |  | declare(strict_types=1); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  | namespace FireflyIII\Http\Middleware; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | use Closure; | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  | use Illuminate\Contracts\Auth\Factory as Auth; | 
					
						
							| 
									
										
										
										
											2017-02-17 20:15:17 +01:00
										 |  |  | use Log; | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  | /** | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |  * Class AuthenticateTwoFactor. | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |  */ | 
					
						
							|  |  |  | class AuthenticateTwoFactor | 
					
						
							|  |  |  | { | 
					
						
							|  |  |  |     /** | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |      * The authentication factory instance. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @var \Illuminate\Contracts\Auth\Factory | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     protected $auth; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Create a new middleware instance. | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |      * @param  \Illuminate\Contracts\Auth\Factory $auth | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |      * @return void | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |      */ | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |     public function __construct(Auth $auth) | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |     { | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |         $this->auth = $auth; | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2018-01-25 20:38:50 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-07-08 12:08:53 +02:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |     /** | 
					
						
							| 
									
										
										
										
											2018-07-22 08:10:16 +02:00
										 |  |  |      * Handle 2FA request. | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |      * @param         $request | 
					
						
							|  |  |  |      * @param Closure $next | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector|mixed | 
					
						
							| 
									
										
										
										
											2018-03-28 19:37:59 +02:00
										 |  |  |      * @throws \Psr\Container\NotFoundExceptionInterface | 
					
						
							|  |  |  |      * @throws \Psr\Container\ContainerExceptionInterface | 
					
						
							| 
									
										
										
										
											2018-07-17 22:21:03 +02:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @SuppressWarnings(PHPMD.CyclomaticComplexity) | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |      */ | 
					
						
							| 
									
										
										
										
											2018-07-17 22:21:03 +02:00
										 |  |  |     public function handle($request, Closure $next) | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |     { | 
					
						
							| 
									
										
										
										
											2018-07-09 19:24:08 +02:00
										 |  |  |         /** @noinspection PhpUndefinedMethodInspection */ | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |         if ($this->auth->guest()) { | 
					
						
							| 
									
										
										
										
											2018-03-07 05:51:51 +01:00
										 |  |  |             return response()->redirectTo(route('login')); | 
					
						
							| 
									
										
										
										
											2018-01-25 20:38:50 +01:00
										 |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-07-08 07:59:58 +02:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  |         $is2faEnabled = app('preferences')->get('twoFactorAuthEnabled', false)->data; | 
					
						
							|  |  |  |         $has2faSecret = null !== app('preferences')->get('twoFactorAuthSecret'); | 
					
						
							| 
									
										
										
										
											2018-07-09 19:24:08 +02:00
										 |  |  |         /** @noinspection PhpUndefinedMethodInspection */ | 
					
						
							| 
									
										
										
										
											2018-07-13 15:50:42 +02:00
										 |  |  |         $is2faAuthed = 'true' === $request->cookie('twoFactorAuthenticated'); | 
					
						
							| 
									
										
										
										
											2017-02-17 20:15:17 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-20 16:46:26 +01:00
										 |  |  |         if ($is2faEnabled && $has2faSecret && !$is2faAuthed) { | 
					
						
							| 
									
										
										
										
											2017-02-17 20:15:17 +01:00
										 |  |  |             Log::debug('Does not seem to be 2 factor authed, redirect.'); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-03-07 05:51:51 +01:00
										 |  |  |             return response()->redirectTo(route('two-factor.index')); | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return $next($request); | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2018-02-09 19:12:46 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-19 16:23:09 +01:00
										 |  |  | } |