Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WIP] feat: 2FA #256

Merged
merged 33 commits into from
Jul 30, 2024
Merged

[WIP] feat: 2FA #256

merged 33 commits into from
Jul 30, 2024

Conversation

franbarbalopez
Copy link
Contributor

@franbarbalopez franbarbalopez commented Apr 25, 2024
edited by MrPunyapal
Loading

  • Livewire component for 2FA
  • Now app use Fortify Login with 2FA confirmation if 2FA is enabled on that user
  • Added livewire component on profile view
image image image image
  • password confirmation

image

  • OTP verification
    image

@franbarbalopez franbarbalopez changed the title Feat - 2FA Feature - 2FA Apr 25, 2024
@franbarbalopez franbarbalopez linked an issue Apr 25, 2024 that may be closed by this pull request
Feat: allow 2FA #248
Closed
nunomaduro
nunomaduro requested changes May 4, 2024
View reviewed changes
Copy link
Member

@nunomaduro nunomaduro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you address the feedback, can rebase the PR please?

tests/Http/LoginTest.php Show resolved Hide resolved
tests/Http/LoginTest.php Show resolved Hide resolved
@nunomaduro nunomaduro changed the title Feature - 2FA [WIP] feat: 2FA May 4, 2024
@franbarbalopez
Copy link
Contributor Author

@nunomaduro this is ready to merge

@franbarbalopez franbarbalopez changed the title [WIP] feat: 2FA feat: 2FA May 14, 2024
@MrPunyapal MrPunyapal force-pushed the feat/two-factor-authentication branch from 63d8a0e to 300bdad Compare July 20, 2024 09:55
@MrPunyapal MrPunyapal changed the title feat: 2FA [WIP] feat: 2FA Jul 21, 2024
@MrPunyapal MrPunyapal force-pushed the feat/two-factor-authentication branch from 490ab14 to 4b4988a Compare July 24, 2024 16:42
@MrPunyapal MrPunyapal force-pushed the feat/two-factor-authentication branch from 4b4988a to c1eb758 Compare July 29, 2024 14:21
@MrPunyapal
Add two-factor authentication secret property to User model
7a7e62d
@MrPunyapal
chore: Refactor TwoFactorAuthenticationForm component
8f7f599 
The TwoFactorAuthenticationForm component has been refactored to improve code organization and readability. The changes include:
- Adding the `User` model to the component's namespace
- Adding the `Locked` attribute to the `showingQrCode`, `showingRecoveryCodes`, `code`, and `enabled` properties
- Updating the `mount` method to set the `enabled` property based on the user's two-factor secret
- Adding conditional checks in the `showRecoveryCodes` and `regenerateRecoveryCodes` methods to prevent execution when two-factor authentication is not enabled
- Updating the `disableTwoFactorAuthentication` method to set the `enabled` property to false

These changes aim to improve the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
06a15f1 
The TwoFactorAuthenticationForm component has been refactored to improve code organization and readability. Changes include adding the `User` model to the component's namespace, introducing the `Locked` attribute to relevant properties, updating the `mount` method to set the `enabled` property based on the user's two-factor secret, and adding conditional checks in methods to prevent execution when two-factor authentication is not enabled. The `disableTwoFactorAuthentication` method has also been updated to set the `enabled` property to false. These changes aim to enhance the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
31ccf88
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
06a9aaa 
Refactor the TwoFactorAuthenticationForm component to improve code organization and readability. Changes include adding the User model to the component's namespace, introducing the Locked attribute to relevant properties, updating the mount method to set the enabled property based on the user's two-factor secret, and adding conditional checks in methods to prevent execution when two-factor authentication is not enabled. The disableTwoFactorAuthentication method has also been updated to set the enabled property to false. These changes aim to enhance the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
b2d3021
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
fdf4385
@MrPunyapal
refactor: Enable two-factor authentication confirmation in Fortify co…
add000c 
…nfiguration

Update the `fortify.php` configuration file to enable the confirmation of two-factor authentication during the authentication process. This change sets the `confirm` option to `true` and the `confirmPassword` option to `true` in the `twoFactorAuthentication` feature configuration. This ensures that users are required to confirm their two-factor authentication setup by entering their password. This improvement enhances the security of the application by adding an extra layer of verification for two-factor authentication.
@MrPunyapal
refactor: Remove two-factor authentication secret property from User …
78f0a37 
…model
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
f5c5346 
Refactor the TwoFactorAuthenticationForm component to improve code organization and readability. Changes include adding the User model to the component's namespace, introducing the Locked attribute to relevant properties, updating the mount method to set the enabled property based on the user's two-factor secret, and adding conditional checks in methods to prevent execution when two-factor authentication is not enabled. The disableTwoFactorAuthentication method has also been updated to set the enabled property to false. These changes aim to enhance the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
18c92a3
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
9ea743b 
Refactor the TwoFactorAuthenticationForm component to improve code organization and readability. Changes include adding the User model to the component's namespace, introducing the Locked attribute to relevant properties, updating the mount method to set the enabled property based on the user's two-factor secret, and adding conditional checks in methods to prevent execution when two-factor authentication is not enabled. The disableTwoFactorAuthentication method has also been updated to set the enabled property to false. These changes aim to enhance the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Rename TwoFactorAuthenticationTest.php to TwoFactorAuthenti…
baf59bf 
…cationFormTest.php

The file `TwoFactorAuthenticationTest.php` has been renamed to `TwoFactorAuthenticationFormTest.php` to better reflect its purpose as a test for the `TwoFactorAuthenticationForm` component. This change improves code organization and maintainability.
@MrPunyapal
refactor: Add #[Locked] attribute to showingConfirmation property in …
f73f76e 
…TwoFactorAuthenticationForm
@MrPunyapal MrPunyapal force-pushed the feat/two-factor-authentication branch from de194ec to f73f76e Compare July 30, 2024 05:08
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component for getting b…
6d94f5b 
…etter auto completions
@MrPunyapal
refactor: Add ConfirmsPasswords trait for password confirmation in Tw…
ee916c0 
…oFactorAuthenticationForm

The ConfirmsPasswords trait has been added to the TwoFactorAuthenticationForm component to handle password confirmation. This trait provides methods to ensure that the user's password has been recently confirmed. This change improves the security and usability of the TwoFactorAuthenticationForm component by requiring password confirmation before performing sensitive actions.
@MrPunyapal
refactor: Add ConfirmsPasswords trait for password confirmation in Tw…
47d1a32 
…oFactorAuthenticationForm
@MrPunyapal
refactor: Add ConfirmPassword component for password confirmation in …
ce252db 
…TwoFactorAuthenticationForm
@MrPunyapal
refactor: Add ConfirmPasswordTest for password confirmation in TwoFac…
2362149 
…torAuthenticationForm
@MrPunyapal
refactor: Add ConfirmPassword component for password confirmation in …
900d631 
…TwoFactorAuthenticationForm
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
b6c958a 
Refactor the TwoFactorAuthenticationForm component to improve code organization and readability. Changes include adding the User model to the component's namespace, introducing the Locked attribute to relevant properties, updating the mount method to set the enabled property based on the user's two-factor secret, and adding conditional checks in methods to prevent execution when two-factor authentication is not enabled. The disableTwoFactorAuthentication method has also been updated to set the enabled property to false. These changes aim to enhance the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Improve TwoFactorAuthenticationForm component
dd1d3ef 
Refactor the TwoFactorAuthenticationForm component to improve code organization and readability. Changes include adding the User model to the component's namespace, introducing the Locked attribute to relevant properties, updating the mount method to set the enabled property based on the user's two-factor secret, and adding conditional checks in methods to prevent execution when two-factor authentication is not enabled. The disableTwoFactorAuthentication method has also been updated to set the enabled property to false. These changes aim to enhance the maintainability and extensibility of the TwoFactorAuthenticationForm component.
@MrPunyapal
refactor: Add two-factor authentication properties to User model
91b320e 
Add the two_factor_secret, two_factor_recovery_codes, and two_factor_confirmed_at properties to the User model. This allows for the storage and retrieval of two-factor authentication information for users. The changes include updating the casts() method in the User model to include the new properties. This enhancement improves the functionality and security of the User model.
@nunomaduro nunomaduro merged commit 470d46c into main Jul 30, 2024
@nunomaduro nunomaduro deleted the feat/two-factor-authentication branch July 30, 2024 16:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nunomaduro nunomaduro nunomaduro requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Feat: allow 2FA
3 participants
@franbarbalopez @nunomaduro @MrPunyapal