Add an overrideable method to perform an action after completion of 2fa, fire event after completion of 2fa

michaeldzjap · michaeldzjap · commit 8db3779c78a5 · 2019-01-15T18:07:08.000+01:00
diff --git a/src/Events/TwoFactorAuthenticated.php b/src/Events/TwoFactorAuthenticated.php
@@ -0,0 +1,29 @@
+<?php
+
+namespace MichaelDzjap\TwoFactorAuth\Events;
+
+use App\User;
+use Illuminate\Queue\SerializesModels;
+
+class TwoFactorAuthenticated
+{
+    use SerializesModels;
+
+    /**
+     * The user instance.
+     *
+     * @var \App\User
+     */
+    public $user;
+
+    /**
+     * Create a new event instance.
+     *
+     * @param  \App\User  $user
+     * @return void
+     */
+    public function __construct(User $user)
+    {
+        $this->user = $user;
+    }
+}
diff --git a/src/Http/Controllers/TwoFactorAuthenticatesUsers.php b/src/Http/Controllers/TwoFactorAuthenticatesUsers.php
@@ -7,6 +7,7 @@
 use Illuminate\Http\Request;
 use Illuminate\Validation\ValidationException;
 use MichaelDzjap\TwoFactorAuth\Contracts\TwoFactorProvider;
+use MichaelDzjap\TwoFactorAuth\Events\TwoFactorAuthenticated;
 use MichaelDzjap\TwoFactorAuth\Exceptions\TokenAlreadyProcessedException;
 use MichaelDzjap\TwoFactorAuth\Exceptions\TokenExpiredException;
 use MichaelDzjap\TwoFactorAuth\Exceptions\TokenInvalidException;
@@ -100,7 +101,24 @@ protected function sendTwoFactorAuthResponse(Request $request)
 
         $request->session()->forget('two-factor:auth');
 
-        return redirect()->intended($this->redirectPath());
+        $user = $request->user();
+
+        event(new TwoFactorAuthenticated($user));
+
+        return $this->authenticated($request, $user)
+            ?: redirect()->intended($this->redirectPath());
+    }
+
+    /**
+     * The user has been two-factor authenticated.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  mixed  $user
+     * @return mixed
+     */
+    protected function authenticated(Request $request, $user)
+    {
+        //
     }
 
     /**
@@ -109,6 +127,7 @@ protected function sendTwoFactorAuthResponse(Request $request)
      * we can only do it here because we don't need to redirect to the login route.
      *
      * @param  \Illuminate\Http\Request  $request
+     *
      * @throws \Illuminate\Validation\ValidationException
      */
     protected function sendFailedTwoFactorAuthResponse(Request $request)
