willdot.net / cocoon
forked from hailey.at/cocoon
An atproto PDS written in Go
fork atom

implement enabling / disabling email auth factor (not currently checked on auth checks though)

Signed-off-by: Will Andrews <did:plc:dadhhalkfcq3gucaq25hjqon>

authored by willdot.net and committed by Tangled c006f078 110228ad

options
unified split
Changed files
+29 -11
models
models.go
server
handle_server_create_session.go
handle_server_get_session.go
handle_server_update_email.go
+3 -2
models/models.go
··· 29 29 Root []byte 30 30 Preferences []byte 31 31 Deactivated bool 32 + EmailAuthFactor bool 32 33 } 33 34 34 35 func (r *Repo) SignFor(ctx context.Context, did string, msg []byte) ([]byte, error) { ··· 121 122 } 122 123 123 124 type ReservedKey struct { 124 - KeyDid string `gorm:"primaryKey"` 125 - Did *string `gorm:"index"` 125 + KeyDid string `gorm:"primaryKey"` 126 + Did *string `gorm:"index"` 126 127 PrivateKey []byte 127 128 CreatedAt time.Time `gorm:"index"` 128 129 }
+1 -1
server/handle_server_create_session.go
··· 104 104 Did: repo.Repo.Did, 105 105 Email: repo.Email, 106 106 EmailConfirmed: repo.EmailConfirmedAt != nil, 107 - EmailAuthFactor: false, 107 + EmailAuthFactor: repo.EmailAuthFactor, 108 108 Active: repo.Active(), 109 109 Status: repo.Status(), 110 110 })
+1 -1
server/handle_server_get_session.go
··· 23 23 Did: repo.Repo.Did, 24 24 Email: repo.Email, 25 25 EmailConfirmed: repo.EmailConfirmedAt != nil, 26 - EmailAuthFactor: false, // TODO: todo todo 26 + EmailAuthFactor: repo.EmailAuthFactor, 27 27 Active: repo.Active(), 28 28 Status: repo.Status(), 29 29 })
+24 -7
server/handle_server_update_email.go
··· 11 11 type ComAtprotoServerUpdateEmailRequest struct { 12 12 Email string `json:"email" validate:"required"` 13 13 EmailAuthFactor bool `json:"emailAuthFactor"` 14 - Token string `json:"token" validate:"required"` 14 + Token string `json:"token"` 15 15 } 16 16 17 17 func (s *Server) handleServerUpdateEmail(e echo.Context) error { ··· 30 30 return helpers.InputError(e, nil) 31 31 } 32 32 33 - if urepo.EmailUpdateCode == nil || urepo.EmailUpdateCodeExpiresAt == nil { 33 + // To disable email auth factor a token is required. 34 + // To enable email auth factor a token is not required. 35 + // If updating an email address, a token will be sent anyway 36 + if urepo.EmailAuthFactor && req.EmailAuthFactor == false && req.Token == "" { 34 37 return helpers.InvalidTokenError(e) 35 38 } 36 39 37 - if *urepo.EmailUpdateCode != req.Token { 38 - return helpers.InvalidTokenError(e) 40 + if req.Token != "" { 41 + if urepo.EmailUpdateCode == nil || urepo.EmailUpdateCodeExpiresAt == nil { 42 + return helpers.InvalidTokenError(e) 43 + } 44 + 45 + if *urepo.EmailUpdateCode != req.Token { 46 + return helpers.InvalidTokenError(e) 47 + } 48 + 49 + if time.Now().UTC().After(*urepo.EmailUpdateCodeExpiresAt) { 50 + return helpers.ExpiredTokenError(e) 51 + } 39 52 } 40 53 41 - if time.Now().UTC().After(*urepo.EmailUpdateCodeExpiresAt) { 42 - return helpers.ExpiredTokenError(e) 54 + query := "UPDATE repos SET email_update_code = NULL, email_update_code_expires_at = NULL, email_auth_factor = ?, email = ?" 55 + 56 + if urepo.Email != req.Email { 57 + query += ",email_confirmed_at = NULL" 43 58 } 44 59 45 - if err := s.db.Exec(ctx, "UPDATE repos SET email_update_code = NULL, email_update_code_expires_at = NULL, email_confirmed_at = NULL, email = ? WHERE did = ?", nil, req.Email, urepo.Repo.Did).Error; err != nil { 60 + query += " WHERE did = ?" 61 + 62 + if err := s.db.Exec(ctx, query, nil, req.EmailAuthFactor, req.Email, urepo.Repo.Did).Error; err != nil { 46 63 logger.Error("error updating repo", "error", err) 47 64 return helpers.ServerError(e, nil) 48 65 }