2019-12-23 17:20:28 +01:00
|
|
|
<?php
|
2020-02-22 18:14:36 +01:00
|
|
|
/**
|
|
|
|
|
* This file is part of Part-DB (https://github.com/Part-DB/Part-DB-symfony).
|
|
|
|
|
*
|
2022-11-29 22:28:53 +01:00
|
|
|
* Copyright (C) 2019 - 2022 Jan Böhmer (https://github.com/jbtronics)
|
2020-02-22 18:14:36 +01:00
|
|
|
*
|
|
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU Affero General Public License as published
|
|
|
|
|
* by the Free Software Foundation, either version 3 of the License, or
|
|
|
|
|
* (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU Affero General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
|
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
|
*/
|
2020-01-05 15:46:58 +01:00
|
|
|
|
|
|
|
|
declare(strict_types=1);
|
|
|
|
|
|
2019-12-23 17:20:28 +01:00
|
|
|
namespace App\Validator\Constraints;
|
|
|
|
|
|
|
|
|
|
use App\Entity\UserSystem\User;
|
|
|
|
|
use Scheb\TwoFactorBundle\Security\TwoFactor\Provider\Google\GoogleAuthenticator;
|
2022-08-13 23:33:05 +02:00
|
|
|
use Scheb\TwoFactorBundle\Security\TwoFactor\Provider\Google\GoogleAuthenticatorInterface;
|
2019-12-23 17:20:28 +01:00
|
|
|
use Symfony\Component\Form\FormInterface;
|
|
|
|
|
use Symfony\Component\Validator\Constraint;
|
|
|
|
|
use Symfony\Component\Validator\ConstraintValidator;
|
|
|
|
|
use Symfony\Component\Validator\Exception\UnexpectedTypeException;
|
|
|
|
|
use Symfony\Component\Validator\Exception\UnexpectedValueException;
|
|
|
|
|
|
2022-08-14 19:32:53 +02:00
|
|
|
use function is_string;
|
|
|
|
|
use function strlen;
|
|
|
|
|
|
2019-12-23 17:20:28 +01:00
|
|
|
class ValidGoogleAuthCodeValidator extends ConstraintValidator
|
|
|
|
|
{
|
2023-06-11 14:15:46 +02:00
|
|
|
public function __construct(protected GoogleAuthenticatorInterface $googleAuthenticator)
|
2019-12-23 17:20:28 +01:00
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-05 15:46:58 +01:00
|
|
|
public function validate($value, Constraint $constraint): void
|
2019-12-23 17:20:28 +01:00
|
|
|
{
|
2020-08-21 21:36:22 +02:00
|
|
|
if (!$constraint instanceof ValidGoogleAuthCode) {
|
2019-12-23 17:20:28 +01:00
|
|
|
throw new UnexpectedTypeException($constraint, ValidGoogleAuthCode::class);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (null === $value || '' === $value) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2022-08-14 19:32:53 +02:00
|
|
|
if (!is_string($value)) {
|
2019-12-23 17:20:28 +01:00
|
|
|
throw new UnexpectedValueException($value, 'string');
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-21 21:36:22 +02:00
|
|
|
if (!ctype_digit($value)) {
|
2019-12-23 17:20:28 +01:00
|
|
|
$this->context->addViolation('validator.google_code.only_digits_allowed');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//Number must have 6 digits
|
2022-08-14 19:32:53 +02:00
|
|
|
if (6 !== strlen($value)) {
|
2019-12-23 17:20:28 +01:00
|
|
|
$this->context->addViolation('validator.google_code.wrong_digit_count');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//Try to retrieve the user we want to check
|
2020-01-04 20:24:09 +01:00
|
|
|
if ($this->context->getObject() instanceof FormInterface &&
|
2019-12-23 17:20:28 +01:00
|
|
|
$this->context->getObject()->getParent() instanceof FormInterface
|
|
|
|
|
&& $this->context->getObject()->getParent()->getData() instanceof User) {
|
|
|
|
|
$user = $this->context->getObject()->getParent()->getData();
|
|
|
|
|
|
|
|
|
|
//Check if the given code is valid
|
2020-08-21 21:36:22 +02:00
|
|
|
if (!$this->googleAuthenticator->checkCode($user, $value)) {
|
2019-12-23 17:20:28 +01:00
|
|
|
$this->context->addViolation('validator.google_code.wrong_code');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2020-01-04 20:24:09 +01:00
|
|
|
}
|
