src/Core/Identity/AuthenticatorTokenProvider.cs

using System;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Identity;
using Bit.Core.Models.Table;
using Bit.Core.Enums;
using OtpNet;
using Bit.Core.Services;
using Microsoft.Extensions.DependencyInjection;

namespace Bit.Core.Identity
{
    public class AuthenticatorTokenProvider : IUserTwoFactorTokenProvider<User>
    {
        private readonly IServiceProvider _serviceProvider;

        public AuthenticatorTokenProvider(IServiceProvider serviceProvider)
        {
            _serviceProvider = serviceProvider;
        }

        public async Task<bool> CanGenerateTwoFactorTokenAsync(UserManager<User> manager, User user)
        {
            var provider = user.GetTwoFactorProvider(TwoFactorProviderType.Authenticator);
            if(string.IsNullOrWhiteSpace((string)provider?.MetaData["Key"]))
            {
                return false;
            }
            return await user.TwoFactorProviderIsEnabledAsync(TwoFactorProviderType.Authenticator, 
                _serviceProvider.GetRequiredService<IUserService>());
        }

        public Task<string> GenerateAsync(string purpose, UserManager<User> manager, User user)
        {
            return Task.FromResult<string>(null);
        }

        public Task<bool> ValidateAsync(string purpose, string token, UserManager<User> manager, User user)
        {
            var provider = user.GetTwoFactorProvider(TwoFactorProviderType.Authenticator);
            var otp = new Totp(Base32Encoding.ToBytes((string)provider.MetaData["Key"]));

            long timeStepMatched;
            var valid = otp.VerifyTotp(token, out timeStepMatched, new VerificationWindow(1, 1));

            return Task.FromResult(valid);
        }
    }
}
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
+								using System;
 								using System.Threading.Tasks;
-												Upgrade to ASP.NET Core RC2 release.

											
										
										
											2016-05-19 19:10:24 -04:00
+								using Microsoft.AspNetCore.Identity;
-												move domains to Models.Table

											
										
										
											2017-03-08 21:45:08 -05:00
+								using Bit.Core.Models.Table;
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
+								using Bit.Core.Enums;
-												Replace OtpSharp with Otp.NET for net core support

											
										
										
											2017-01-13 21:34:54 -05:00
+								using OtpNet;
-												CanAccessPremium checks instead of User.Premium

											
										
										
											2018-08-28 16:23:58 -04:00
+								using Bit.Core.Services;
-												token providers cant inject userservice

											
										
										
											2018-08-28 22:21:13 -04:00
+								using Microsoft.Extensions.DependencyInjection;
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
 								namespace Bit.Core.Identity
 								{
-												Upgrade to ASP.NET Core RC2 release.

											
										
										
											2016-05-19 19:10:24 -04:00
+								    public class AuthenticatorTokenProvider : IUserTwoFactorTokenProvider<User>
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
+								    {
-												token providers cant inject userservice

											
										
										
											2018-08-28 22:21:13 -04:00
+								        private readonly IServiceProvider _serviceProvider;
-												CanAccessPremium checks instead of User.Premium

											
										
										
											2018-08-28 16:23:58 -04:00
-												token providers cant inject userservice

											
										
										
											2018-08-28 22:21:13 -04:00
+								        public AuthenticatorTokenProvider(IServiceProvider serviceProvider)
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
+								        {
-												token providers cant inject userservice

											
										
										
											2018-08-28 22:21:13 -04:00
+								            _serviceProvider = serviceProvider;
-												CanAccessPremium checks instead of User.Premium

											
										
										
											2018-08-28 16:23:58 -04:00
+								        }
-												refactor code to with user TwoFactorProviders

											
										
										
											2017-06-07 14:14:34 -04:00
-												CanAccessPremium checks instead of User.Premium

											
										
										
											2018-08-28 16:23:58 -04:00
+								        public async Task<bool> CanGenerateTwoFactorTokenAsync(UserManager<User> manager, User user)
 								        {
 								            var provider = user.GetTwoFactorProvider(TwoFactorProviderType.Authenticator);
-												reference OrganizationMembership instead

											
										
										
											2018-08-31 17:05:27 -04:00
+								            if(string.IsNullOrWhiteSpace((string)provider?.MetaData["Key"]))
-												CanAccessPremium checks instead of User.Premium

											
										
										
											2018-08-28 16:23:58 -04:00
+								            {
 								                return false;
 								            }
-												token providers cant inject userservice

											
										
										
											2018-08-28 22:21:13 -04:00
+								            return await user.TwoFactorProviderIsEnabledAsync(TwoFactorProviderType.Authenticator,
 								                _serviceProvider.GetRequiredService<IUserService>());
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
+								        }
 								        public Task<string> GenerateAsync(string purpose, UserManager<User> manager, User user)
 								        {
 								            return Task.FromResult<string>(null);
 								        }
 								        public Task<bool> ValidateAsync(string purpose, string token, UserManager<User> manager, User user)
 								        {
-												refactor code to with user TwoFactorProviders

											
										
										
											2017-06-07 14:14:34 -04:00
+								            var provider = user.GetTwoFactorProvider(TwoFactorProviderType.Authenticator);
-												stubbing out api setup for u2f

											
										
										
											2017-06-21 21:46:52 -04:00
+								            var otp = new Totp(Base32Encoding.ToBytes((string)provider.MetaData["Key"]));
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
 								            long timeStepMatched;
-												updated otp library. reduced verification window to RFC standard of 1

											
										
										
											2017-01-28 22:11:54 -05:00
+								            var valid = otp.VerifyTotp(token, out timeStepMatched, new VerificationWindow(1, 1));
-												initial commit of source

											
										
										
											2015-12-08 22:57:38 -05:00
 								            return Task.FromResult(valid);
 								        }
 								    }
 								}