diff options
author | Morris Jobke <hey@morrisjobke.de> | 2018-06-25 15:49:58 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2018-06-25 15:49:58 +0200 |
commit | 9444a3fad1b6238a431b264f162239a777fd9591 (patch) | |
tree | 60be9340aaf86257eccdc034af64d79db5e604f0 /core/Command | |
parent | e3be9efd5708ff4065212ffcac3ef2f57779b7fe (diff) | |
parent | 7be465febe2b6f8b5cee8ad95f45028b4bcc8d35 (diff) | |
download | nextcloud-server-9444a3fad1b6238a431b264f162239a777fd9591.tar.gz nextcloud-server-9444a3fad1b6238a431b264f162239a777fd9591.zip |
Merge pull request #9632 from nextcloud/enhancement/stateful-2fa-providers
Stateful 2fa providers
Diffstat (limited to 'core/Command')
-rw-r--r-- | core/Command/TwoFactorAuth/State.php | 110 |
1 files changed, 110 insertions, 0 deletions
diff --git a/core/Command/TwoFactorAuth/State.php b/core/Command/TwoFactorAuth/State.php new file mode 100644 index 00000000000..076e2211a12 --- /dev/null +++ b/core/Command/TwoFactorAuth/State.php @@ -0,0 +1,110 @@ +<?php + +declare(strict_types = 1); + +/** + * @copyright 2018 Christoph Wurst <christoph@winzerhof-wurst.at> + * + * @author 2018 Christoph Wurst <christoph@winzerhof-wurst.at> + * + * @license GNU AGPL version 3 or any later version + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see <http://www.gnu.org/licenses/>. + * + */ + +namespace OC\Core\Command\TwoFactorAuth; + +use OC\Core\Command\Base; +use OCP\Authentication\TwoFactorAuth\IRegistry; +use OCP\IUserManager; +use Symfony\Component\Console\Input\InputArgument; +use Symfony\Component\Console\Input\InputInterface; +use Symfony\Component\Console\Output\OutputInterface; + +class State extends Base { + + /** @var IRegistry */ + private $registry; + + /** @var IUserManager */ + private $userManager; + + public function __construct(IRegistry $registry, IUserManager $userManager) { + parent::__construct('twofactorauth:state'); + + $this->registry = $registry; + $this->userManager = $userManager; + } + + protected function configure() { + parent::configure(); + + $this->setName('twofactorauth:state'); + $this->setDescription('Get the two-factor authentication (2FA) state of a user'); + $this->addArgument('uid', InputArgument::REQUIRED); + } + + protected function execute(InputInterface $input, OutputInterface $output) { + $uid = $input->getArgument('uid'); + $user = $this->userManager->get($uid); + if (is_null($user)) { + $output->writeln("<error>Invalid UID</error>"); + return; + } + + $providerStates = $this->registry->getProviderStates($user); + $filtered = $this->filterEnabledDisabledUnknownProviders($providerStates); + list ($enabled, $disabled) = $filtered; + + if (!empty($enabled)) { + $output->writeln("Two-factor authentication is enabled for user $uid"); + } else { + $output->writeln("Two-factor authentication is not enabled for user $uid"); + } + + $output->writeln(""); + $this->printProviders("Enabled providers", $enabled, $output); + $this->printProviders("Disabled providers", $disabled, $output); + } + + private function filterEnabledDisabledUnknownProviders(array $providerStates): array { + $enabled = []; + $disabled = []; + + foreach ($providerStates as $providerId => $isEnabled) { + if ($isEnabled) { + $enabled[] = $providerId; + } else { + $disabled[] = $providerId; + } + } + + return [$enabled, $disabled]; + } + + private function printProviders(string $title, array $providers, + OutputInterface $output) { + if (empty($providers)) { + // Ignore and don't print anything + return; + } + + $output->writeln($title . ":"); + foreach ($providers as $provider) { + $output->writeln("- " . $provider); + } + } + +} |