discourse/app/models/user_second_factor.rb
Jeff Wong 88ef5e55fe
FEATURE: add ability to have multiple totp factors (#7626)
Adds a second factor landing page that centralizes a user's second factor configuration.

This contains both TOTP and Backup, and also allows multiple TOTP tokens to be registered and organized by a name. Access to this page is authenticated via password, and cached for 30 minutes via a secure session.
2019-06-26 16:58:06 -07:00

53 lines
1.2 KiB
Ruby

# frozen_string_literal: true
class UserSecondFactor < ActiveRecord::Base
belongs_to :user
scope :backup_codes, -> do
where(method: UserSecondFactor.methods[:backup_codes], enabled: true)
end
scope :totps, -> do
where(method: UserSecondFactor.methods[:totp], enabled: true)
end
scope :all_totps, -> do
where(method: UserSecondFactor.methods[:totp])
end
def self.methods
@methods ||= Enum.new(
totp: 1,
backup_codes: 2,
)
end
def get_totp_object
ROTP::TOTP.new(self.data, issuer: SiteSetting.title)
end
def totp_provisioning_uri
get_totp_object.provisioning_uri(user.email)
end
end
# == Schema Information
#
# Table name: user_second_factors
#
# id :bigint not null, primary key
# user_id :integer not null
# method :integer not null
# data :string not null
# enabled :boolean default(FALSE), not null
# last_used :datetime
# created_at :datetime not null
# updated_at :datetime not null
#
# Indexes
#
# index_user_second_factors_on_method_and_enabled (method,enabled)
# index_user_second_factors_on_user_id (user_id)
#