Adding a bit more refactor

tnylea · tnylea · commit f061b9fd551c · 2025-04-21T14:15:49.000-04:00
diff --git a/app/Http/Controllers/Auth/AuthenticatedSessionController.php b/app/Http/Controllers/Auth/AuthenticatedSessionController.php
@@ -8,6 +8,7 @@
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Hash;
 use Illuminate\Support\Facades\Route;
 use Inertia\Inertia;
 use Inertia\Response;
@@ -30,17 +31,16 @@ public function create(Request $request): Response
      */
     public function store(LoginRequest $request): RedirectResponse
     {
-        // Find user by email
         $user = User::where('email', $request->email)->first();
 
-        // If user exists, password is correct, and 2FA is enabled, redirect to challenge
-        if ($user && $user->two_factor_confirmed_at && \Illuminate\Support\Facades\Hash::check($request->password, $user->password)) {
+        // If this user exists, password is correct, and 2FA is enabled, we want to redirect to the 2FA challenge
+        if ($user && $user->two_factor_confirmed_at && Hash::check($request->password, $user->password)) {
             $request->session()->put('login.id', $user->getKey());
             // Optionally clear any previous errors
             return redirect()->route('two-factor.challenge');
         }
 
-        // Proceed with normal authentication (this will handle errors and login)
+        // Otherwise, proceed with normal authentication
         $request->authenticate();
         $request->session()->regenerate();
 
diff --git a/app/Http/Controllers/Auth/TwoFactorAuthChallengeController.php b/app/Http/Controllers/Auth/TwoFactorAuthChallengeController.php
@@ -21,6 +21,7 @@ class TwoFactorAuthChallengeController extends Controller
      */
     public function create(Request $request)
     {
+        dd('here');
         // Session check is now handled by the EnsureTwoFactorChallengeSession middleware
         return Inertia::render('auth/two-factor-challenge');
     }
@@ -84,17 +85,17 @@ protected function authenticateUsingCode(Request $request, User $user)
     protected function authenticateUsingRecoveryCode(Request $request, User $user)
     {
         $recoveryCodes = json_decode(decrypt($user->two_factor_recovery_codes), true);
-        $provided = $request->recovery_code;
-        $match = collect($recoveryCodes)->first(function ($code) use ($provided) {
-            return hash_equals($code, $provided);
+        $providedRecoveryCode = $request->recovery_code;
+        $matchedRecoveryCode = collect($recoveryCodes)->first(function ($code) use ($providedRecoveryCode) {
+            return hash_equals($code, $providedRecoveryCode);
         });
         
-        if (! $match) {
+        if (! $matchedRecoveryCode) {
             return back()->withErrors(['recovery_code' => __('The provided two factor authentication recovery code was invalid.')]);
         }
         
         // Remove used recovery code using the ProcessRecoveryCode action
-        $updatedCodes = app(ProcessRecoveryCode::class)($recoveryCodes, $match);
+        $updatedCodes = app(ProcessRecoveryCode::class)($recoveryCodes, $matchedRecoveryCode);
         if ($updatedCodes === false) {
             return back()->withErrors(['recovery_code' => __('The provided two factor authentication recovery code was invalid.')]);
         }
diff --git a/routes/auth.php b/routes/auth.php
@@ -58,8 +58,6 @@
 
 // Two-factor challenge routes with the ensure-two-factor-challenge-session middleware
 Route::middleware('ensure-two-factor-challenge-session')->group(function () {
-    Route::get('two-factor-challenge', [TwoFactorAuthChallengeController::class, 'create'])
-            ->name('two-factor.challenge');
-
+    Route::inertia('two-factor-challenge', 'auth/two-factor-challenge')->name('two-factor.challenge');
     Route::post('two-factor-challenge', [TwoFactorAuthChallengeController::class, 'store']);
 });

Original file line number	Diff line number	Diff line change
`@@ -21,6 +21,7 @@ class TwoFactorAuthChallengeController extends Controller`
`21`	`21`	`*/`
`22`	`22`	`public function create(Request $request)`
`23`	`23`	`{`
	`24`	`+ dd('here');`
`24`	`25`	`// Session check is now handled by the EnsureTwoFactorChallengeSession middleware`
`25`	`26`	`return Inertia::render('auth/two-factor-challenge');`
`26`	`27`	`}`
`@@ -84,17 +85,17 @@ protected function authenticateUsingCode(Request $request, User $user)`
`84`	`85`	`protected function authenticateUsingRecoveryCode(Request $request, User $user)`
`85`	`86`	`{`
`86`	`87`	`$recoveryCodes = json_decode(decrypt($user->two_factor_recovery_codes), true);`
`87`		`- $provided = $request->recovery_code;`
`88`		`- $match = collect($recoveryCodes)->first(function ($code) use ($provided) {`
`89`		`- return hash_equals($code, $provided);`
	`88`	`+ $providedRecoveryCode = $request->recovery_code;`
	`89`	`+ $matchedRecoveryCode = collect($recoveryCodes)->first(function ($code) use ($providedRecoveryCode) {`
	`90`	`+ return hash_equals($code, $providedRecoveryCode);`
`90`	`91`	`});`
`91`	`92`
`92`		`- if (! $match) {`
	`93`	`+ if (! $matchedRecoveryCode) {`
`93`	`94`	`return back()->withErrors(['recovery_code' => __('The provided two factor authentication recovery code was invalid.')]);`
`94`	`95`	`}`
`95`	`96`
`96`	`97`	`// Remove used recovery code using the ProcessRecoveryCode action`
`97`		`- $updatedCodes = app(ProcessRecoveryCode::class)($recoveryCodes, $match);`
	`98`	`+ $updatedCodes = app(ProcessRecoveryCode::class)($recoveryCodes, $matchedRecoveryCode);`
`98`	`99`	`if ($updatedCodes === false) {`
`99`	`100`	`return back()->withErrors(['recovery_code' => __('The provided two factor authentication recovery code was invalid.')]);`
`100`	`101`	`}`