1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
<?php
/**
* MageSpecialist
*
* NOTICE OF LICENSE
*
* This source file is subject to the Open Software License (OSL 3.0)
* that is bundled with this package in the file LICENSE.txt.
* It is also available through the world-wide-web at this URL:
* http://opensource.org/licenses/osl-3.0.php
* If you did not receive a copy of the license and are unable to
* obtain it through the world-wide-web, please send an email
* to info@magespecialist.it so we can send you a copy immediately.
*
* @category MSP
* @package MSP_TwoFactorAuth
* @copyright Copyright (c) 2017 Skeeller srl (http://www.magespecialist.it)
* @license http://opensource.org/licenses/osl-3.0.php Open Software License (OSL 3.0)
*/
namespace MSP\TwoFactorAuth\Controller\Adminhtml\Authy;
use Magento\Backend\Model\Auth\Session;
use Magento\Backend\App\Action;
use Magento\Framework\Controller\Result\JsonFactory;
use MSP\TwoFactorAuth\Api\TfaInterface;
use MSP\TwoFactorAuth\Controller\Adminhtml\AbstractAction;
use MSP\TwoFactorAuth\Model\Provider\Engine\Authy;
/**
* @SuppressWarnings(PHPMD.CamelCaseMethodName)
*/
class Token extends AbstractAction
{
/**
* @var Session
*/
private $session;
/**
* @var JsonFactory
*/
private $jsonFactory;
/**
* @var TfaInterface
*/
private $tfa;
/**
* @var Authy\Token
*/
private $token;
/**
* Token constructor.
* @param Action\Context $context
* @param JsonFactory $jsonFactory
* @param TfaInterface $tfa
* @param Authy\Token $token
* @param Session $session
*/
public function __construct(
Action\Context $context,
JsonFactory $jsonFactory,
TfaInterface $tfa,
Authy\Token $token,
Session $session
) {
parent::__construct($context);
$this->session = $session;
$this->jsonFactory = $jsonFactory;
$this->tfa = $tfa;
$this->token = $token;
}
/**
* Get current user
* @return \Magento\User\Model\User|null
*/
private function getUser()
{
return $this->session->getUser();
}
/**
* @inheritdoc
*/
public function execute()
{
$via = $this->getRequest()->getParam('via');
$result = $this->jsonFactory->create();
try {
$this->token->request($this->getUser(), $via);
$res = ['success' => true];
} catch (\Exception $e) {
$result->setHttpResponseCode(500);
$res = ['success' => false, 'message' => $e->getMessage()];
}
$result->setData($res);
return $result;
}
/**
* @inheritdoc
*/
protected function _isAllowed()
{
$user = $this->getUser();
return
$user &&
$this->tfa->getProviderIsAllowed($user->getId(), Authy::CODE) &&
$this->tfa->getProvider(Authy::CODE)->isActive($user->getId());
}
}