2015-12-08 22:57:38 -05:00
|
|
|
|
using System;
|
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
|
using Base32;
|
2016-05-19 19:10:24 -04:00
|
|
|
|
using Microsoft.AspNetCore.Identity;
|
2015-12-08 22:57:38 -05:00
|
|
|
|
using Bit.Core.Domains;
|
|
|
|
|
|
using Bit.Core.Enums;
|
|
|
|
|
|
using OtpSharp;
|
|
|
|
|
|
|
|
|
|
|
|
namespace Bit.Core.Identity
|
|
|
|
|
|
{
|
2016-05-19 19:10:24 -04:00
|
|
|
|
public class AuthenticatorTokenProvider : IUserTwoFactorTokenProvider<User>
|
2015-12-08 22:57:38 -05:00
|
|
|
|
{
|
|
|
|
|
|
public Task<bool> CanGenerateTwoFactorTokenAsync(UserManager<User> manager, User user)
|
|
|
|
|
|
{
|
|
|
|
|
|
var canGenerate = user.TwoFactorEnabled
|
|
|
|
|
|
&& user.TwoFactorProvider.HasValue
|
2017-01-09 22:20:34 -05:00
|
|
|
|
&& user.TwoFactorProvider.Value == TwoFactorProviderType.Authenticator
|
2015-12-08 22:57:38 -05:00
|
|
|
|
&& !string.IsNullOrWhiteSpace(user.AuthenticatorKey);
|
|
|
|
|
|
|
|
|
|
|
|
return Task.FromResult(canGenerate);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public Task<string> GetUserModifierAsync(string purpose, UserManager<User> manager, User user)
|
|
|
|
|
|
{
|
|
|
|
|
|
return Task.FromResult<string>(null);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public Task<string> GenerateAsync(string purpose, UserManager<User> manager, User user)
|
|
|
|
|
|
{
|
|
|
|
|
|
return Task.FromResult<string>(null);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public Task<bool> ValidateAsync(string purpose, string token, UserManager<User> manager, User user)
|
|
|
|
|
|
{
|
|
|
|
|
|
var otp = new Totp(Base32Encoder.Decode(user.AuthenticatorKey));
|
|
|
|
|
|
|
|
|
|
|
|
long timeStepMatched;
|
|
|
|
|
|
var valid = otp.VerifyTotp(token, out timeStepMatched, new VerificationWindow(2, 2));
|
|
|
|
|
|
|
|
|
|
|
|
return Task.FromResult(valid);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
