App\Http\Controllers\Auth\TwoFactorController::confirm()

Complexity

Conditions	9
Paths	9

Size

Total Lines	50
Code Lines	34

Duplication

Lines	0
Ratio	0 %

Importance

Changes

0

<?php
    public function confirm(Request $request)

Missing doc comment for function confirm()

    {
        $user = $request->user();
        $validatedData = $request->validate([
            'secret' => 'required|string',
            'one_time_password' => 'required|string',
        ]);
        $secret = $validatedData['secret'];
        $one_time_password = $validatedData['one_time_password'];

        // A 2fa secret is already set up, no need to do anything.
        if (!empty($user->google2fa_secret)) {
            return redirect()->route('home');
        }

        // Check that the one time password matches the secret.
        $authenticator = app(Authenticator::class)->boot($request);
        $isCorrect = $authenticator->verifyGoogle2FA($secret, $one_time_password);

        if ($isCorrect) {
            // The password matched the secret! Save the secret, and authenticate.
            $user->google2fa_secret = $secret;
            $user->save();
            $user->refresh();
            $authenticator->login();

            $this->rememberDevice($request);

            $recovery_codes_url = '';
            if (WhichPortal::isApplicantPortal()) {
                $recovery_codes_url = route('recovery_codes.show');
            } elseif (WhichPortal::isManagerPortal()) {
                $recovery_codes_url = route('manager.recovery_codes.show');
            } elseif (WhichPortal::isAdminPortal()) {
                $recovery_codes_url = route('admin.recovery_codes.show');
            }

            return redirect($recovery_codes_url);
        } else {
            $activation_url = '';
            if (WhichPortal::isApplicantPortal()) {
                $activation_url = route('two_factor.activate');
            } elseif (WhichPortal::isManagerPortal()) {
                $activation_url = route('manager.two_factor.activate');
            } elseif (WhichPortal::isAdminPortal()) {
                $activation_url = backpack_url('admin.two_factor.activate');
            }

            return redirect($activation_url)
                ->withErrors(['otp' => Lang::get('two_factor.activation_otp_error')]);
        }