Merge pull request #6 from DarkGhostHunter/master

2.0

Author: DarkGhostHunter

.gitignore

@@ -2,4 +2,5 @@ build
 composer.lock
 docs
 vendor
-coverage
+coverage
+.idea

README.md

@@ -140,4 +140,17 @@
     */
 
     'fallback' => true,
+
+    /*
+    |--------------------------------------------------------------------------
+    | Device Confirmation
+    |--------------------------------------------------------------------------
+    |
+    | If you're using the "webauthn.confirm" middleware in your routes you may
+    | want to adjust the time the confirmation is remembered in the browser.
+    | This is measured in seconds, but it can be overridden in the route.
+    |
+    */
+
+    'confirm_timeout' => 10800, // 3 hours
 ];

config/larapass.php

@@ -1,11 +1,11 @@
 <?php
 
-use Illuminate\Database\Migrations\Migration;
-use Illuminate\Database\Schema\Blueprint;
 use Illuminate\Support\Facades\Schema;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Database\Migrations\Migration;
 use DarkGhostHunter\Larapass\Eloquent\WebAuthnCredential;
 
-class CreateWebAuthnCredentialsTable extends Migration
+class CreateWebAuthnTables extends Migration
 {
     /**
      * Run the migrations.
@@ -39,6 +39,12 @@ public function up()
 
             $table->primary(['id', 'user_id']);
         });
+
+        Schema::create('web_authn_recoveries', function (Blueprint $table) {
+            $table->string('email')->index();
+            $table->string('token');
+            $table->timestamp('created_at')->nullable();
+        });
     }
 
     /**
@@ -49,5 +55,6 @@ public function up()
     public function down()
     {
         Schema::dropIfExists('web_authn_authentications');
+        Schema::dropIfExists('web_authn_recoveries');
     }
 }

…0_create_web_authn_credentials_table.php …04_02_000000_create_web_authn_tables.phpdatabase/migrations/2020_04_02_000000_create_web_authn_credentials_table.php renamed to database/migrations/2020_04_02_000000_create_web_authn_tables.php database/migrations/2020_04_02_000000_create_web_authn_credentials_table.php renamed to database/migrations/2020_04_02_000000_create_web_authn_tables.php

@@ -258,7 +258,7 @@ class Larapass
      *
      * @param data {{string}}
      * @param headers {{string}}
-     * @returns Promise<any>
+     * @returns Promise<JSON|ReadableStream>
      */
     async login(data = {}, headers = {})
     {
@@ -279,7 +279,7 @@ class Larapass
      *
      * @param data {{string}}
      * @param headers {{string}}
-     * @returns Promise<any>
+     * @returns Promise<JSON|ReadableStream>
      */
     async register(data = {}, headers = {})
     {

resources/js/larapass.js

@@ -0,0 +1,6 @@
+<?php
+
+return [
+    'title' => 'Please confirm with your device before continuing',
+    'button' => 'Confirm'
+];

resources/lang/en/confirm.php

@@ -0,0 +1,24 @@
+<?php
+
+return [
+    'title' => 'Account recovery',
+
+    'description' => 'If you can\'t login with your device, you can register another by opening an email there.',
+    'details'     => 'Ensure you open the email on a device you fully own.',
+
+    'instructions' => 'Press the button to use this device for your account and follow your the instructions.',
+    'unique'       => 'Disable all others devices except this.',
+
+    'button' => [
+        'send'     => 'Send account recovery',
+        'register' => 'Register this device',
+    ],
+
+    'sent'      => 'If the email is correct, you should receive an email with a recovery link shortly.',
+    'attached'  => 'A new device has been attached to your account to authenticate.',
+    'user'      => 'We can\'t find a user with that email address.',
+    'token'     => 'The token is invalid or has expired.',
+    'throttled' => 'Please wait before retrying.',
+
+    'failed'    => 'The recovery failed. Try again.',
+];

resources/lang/en/recovery.php

@@ -0,0 +1,36 @@
+@extends('larapass::layout')
+
+@section('title', __('Authenticator confirmation'))
+
+@section('body')
+    <form id="form">
+        <h2 class="card-title h5 text-center">{{ __('Please confirm with your device before continuing') }}</h2>
+        <hr>
+        <div class="text-center">
+            <button type="submit" class="btn btn-primary btn-lg">
+                {{ __('Confirm') }}
+            </button>
+        </div>
+    </form>
+@endsection
+
+@push('scripts')
+    <script src="{{ asset('vendor/larapass/js/larapass.js') }}"></script>
+    <script>
+        const larapass = new Larapass({
+            login: '/webauthn/confirm',
+            loginOptions: '/webauthn/confirm/options'
+        });
+
+        document.getElementById('form').addEventListener('submit', function (event) {
+            event.preventDefault()
+
+            larapass.login()
+                .then(response => window.location.replace(response.redirectTo))
+                .catch(response => {
+                    alert('{{ __('Confirmation unsuccessful, try again!') }}')
+                    console.error('Confirmation unsuccessful', response);
+                })
+        })
+    </script>
+@endpush

resources/views/confirm.blade.php

@@ -0,0 +1,41 @@
+<!doctype html>
+<html lang="{{ config('app.locale') }}">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport"
+          content="width=device-width, user-scalable=no, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0">
+    <meta http-equiv="X-UA-Compatible" content="ie=edge">
+    <link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css" integrity="sha384-9aIt2nRpC12Uk9gS9baDl411NQApFmC26EwAOH8WgZl5MYYxFfc+NcPb1dKGj7Sk" crossorigin="anonymous">
+    <title>@yield('title')</title>
+    <style>
+        #box-container {
+            min-height: 100vh;
+        }
+        #box {
+            margin-bottom: 6rem;
+        }
+        .cool-shadow {
+            box-shadow: 0 2.8px 2.2px rgba(0, 0, 0, 0.1),
+            0 6.7px 5.3px rgba(0, 0, 0, 0.072),
+            0 12.5px 10px rgba(0, 0, 0, 0.06),
+            0 22.3px 17.9px rgba(0, 0, 0, 0.05),
+            0 41.8px 33.4px rgba(0, 0, 0, 0.04),
+            0 100px 80px rgba(0, 0, 0, 0.028);
+        }
+    </style>
+</head>
+<body class="bg-light">
+<div class="container">
+    <div id="box-container" class="row justify-content-center align-items-center">
+        <div id="form-container" class="col-lg-6 col-md-8 col-sm-10 col-12">
+            <div id="box" class="card border-0 cool-shadow">
+                <section class="card-body">
+                    @yield('body')
+                </section>
+            </div>
+        </div>
+    </div>
+</div>
+@stack('scripts')
+</body>
+</html>

resources/views/layout.blade.php

@@ -0,0 +1,33 @@
+@extends('larapass::layout')
+
+@section('title', trans('larapass::recovery.title'))
+
+@section('body')
+    <form id="form" action="{{ route('webauthn.lost.send') }}" method="post">
+        @csrf
+        <h2 class="card-title h5 text-center">{{ trans('larapass::recovery.title') }}</h2>
+        <hr>
+        <p>{{ trans('larapass::recovery.description') }}</p>
+        @if($errors->any())
+            <div class="alert alert-danger small">
+                <ul>
+                    @foreach ($errors->all() as $error)
+                        <li>{{ $error }}</li>
+                    @endforeach
+                </ul>
+            </div>
+        @elseif(session('status'))
+            <div class="alert alert-success small">
+                {{ session('status') }}
+            </div>
+        @endif
+        <div class="form-group pb-3">
+            <label for="email">Email</label>
+            <input id="email" type="email" name="email" class="form-control" placeholder="john.doe@mail.com" required>
+            <small class="form-text text-muted">{{ trans('larapass::recovery.details') }}</small>
+        </div>
+        <div class="text-center">
+            <button type="submit" class="btn btn-primary btn-lg">{{ trans('larapass::recovery.button.send') }}</button>
+        </div>
+    </form>
+@endsection