2019-05-03 06:17:27 +08:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2017-12-22 09:18:12 +08:00
|
|
|
class UserSecondFactor < ActiveRecord::Base
|
2019-12-17 08:33:51 +08:00
|
|
|
include SecondFactorManager
|
2023-08-24 14:27:38 +08:00
|
|
|
|
|
|
|
MAX_TOTPS_PER_USER = 50
|
|
|
|
MAX_NAME_LENGTH = 300
|
|
|
|
|
2017-12-22 09:18:12 +08:00
|
|
|
belongs_to :user
|
2018-07-12 16:20:45 +08:00
|
|
|
|
|
|
|
scope :backup_codes, -> { where(method: UserSecondFactor.methods[:backup_codes], enabled: true) }
|
2018-02-20 14:44:51 +08:00
|
|
|
|
2019-03-15 15:02:04 +08:00
|
|
|
scope :totps, -> { where(method: UserSecondFactor.methods[:totp], enabled: true) }
|
|
|
|
|
2019-06-27 07:58:06 +08:00
|
|
|
scope :all_totps, -> { where(method: UserSecondFactor.methods[:totp]) }
|
|
|
|
|
2023-08-24 14:27:38 +08:00
|
|
|
validates :name, length: { maximum: MAX_NAME_LENGTH }, if: :name_changed?
|
|
|
|
|
|
|
|
validate :count_per_user_does_not_exceed_limit, on: :create
|
|
|
|
|
2018-02-20 14:44:51 +08:00
|
|
|
def self.methods
|
|
|
|
@methods ||= Enum.new(totp: 1, backup_codes: 2, security_key: 3)
|
|
|
|
end
|
2018-06-28 16:12:32 +08:00
|
|
|
|
2019-12-17 08:33:51 +08:00
|
|
|
def totp_object
|
|
|
|
get_totp_object(self.data)
|
2019-06-27 07:58:06 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
def totp_provisioning_uri
|
2019-12-17 08:33:51 +08:00
|
|
|
totp_object.provisioning_uri(user.email)
|
2018-07-16 10:12:19 +08:00
|
|
|
end
|
2023-08-24 14:27:38 +08:00
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
def count_per_user_does_not_exceed_limit
|
|
|
|
if self.method == UserSecondFactor.methods[:totp]
|
|
|
|
if self.class.where(method: self.method, user_id: self.user_id).count >= MAX_TOTPS_PER_USER
|
|
|
|
errors.add(:base, I18n.t("login.too_many_authenticators"))
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2017-12-22 09:18:12 +08:00
|
|
|
end
|
2018-02-20 14:44:51 +08:00
|
|
|
|
|
|
|
# == Schema Information
|
|
|
|
#
|
|
|
|
# Table name: user_second_factors
|
|
|
|
#
|
2019-05-03 06:34:12 +08:00
|
|
|
# id :bigint not null, primary key
|
2018-02-20 14:44:51 +08:00
|
|
|
# user_id :integer not null
|
2018-02-26 15:32:04 +08:00
|
|
|
# method :integer not null
|
|
|
|
# data :string not null
|
2018-02-20 14:44:51 +08:00
|
|
|
# enabled :boolean default(FALSE), not null
|
|
|
|
# last_used :datetime
|
|
|
|
# created_at :datetime not null
|
|
|
|
# updated_at :datetime not null
|
2023-08-24 14:27:38 +08:00
|
|
|
# name :string(300)
|
2018-02-20 14:44:51 +08:00
|
|
|
#
|
2018-07-16 14:21:07 +08:00
|
|
|
# Indexes
|
|
|
|
#
|
2019-04-02 13:17:55 +08:00
|
|
|
# index_user_second_factors_on_method_and_enabled (method,enabled)
|
|
|
|
# index_user_second_factors_on_user_id (user_id)
|
2018-07-16 14:21:07 +08:00
|
|
|
#
|