BookStack/app/Access/Mfa/TotpValidationRule.php

<?php

namespace BookStack\Access\Mfa;

use Closure;
use Illuminate\Contracts\Validation\ValidationRule;

class TotpValidationRule implements ValidationRule
{
    /**
     * Create a new rule instance.
     * Takes the TOTP secret that must be system provided, not user provided.
     */
    public function __construct(
        protected string $secret,
        protected TotpService $totpService,
    ) {
    }

    public function validate(string $attribute, mixed $value, Closure $fail): void
    {
        $passes = $this->totpService->verifyCode($value, $this->secret);
        if (!$passes) {
            $fail(trans('validation.totp'));
        }
    }
}
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00			`<?php`

Played around with a new app structure 2023-05-17 12:56:55 -04:00			`namespace BookStack\Access\Mfa;`
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00
Framework: Addressed deprecations 2024-03-17 12:52:19 -04:00			`use Closure;`
			`use Illuminate\Contracts\Validation\ValidationRule;`
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00
Framework: Addressed deprecations 2024-03-17 12:52:19 -04:00			`class TotpValidationRule implements ValidationRule`
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00			`{`
			`/**`
			`* Create a new rule instance.`
			`* Takes the TOTP secret that must be system provided, not user provided.`
			`*/`
Framework: Addressed deprecations 2024-03-17 12:52:19 -04:00			`public function __construct(`
			`protected string $secret,`
			`protected TotpService $totpService,`
			`) {`
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00			`}`

Framework: Addressed deprecations 2024-03-17 12:52:19 -04:00			`public function validate(string $attribute, mixed $value, Closure $fail): void`
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00			`{`
Framework: Addressed deprecations 2024-03-17 12:52:19 -04:00			`$passes = $this->totpService->verifyCode($value, $this->secret);`
			`if (!$passes) {`
			`$fail(trans('validation.totp'));`
			`}`
Complete base flow for TOTP setup - Includes DB storage and code validation. - Extracted TOTP work to its own service file. - Still needs testing to cover this side of things. 2021-06-30 17:10:02 -04:00			`}`
			`}`