43 lines
939 B
TypeScript
43 lines
939 B
TypeScript
import $ from 'cafy';
|
|
import * as speakeasy from 'speakeasy';
|
|
import define from '../../../define';
|
|
import { UserProfiles } from '../../../../../models';
|
|
import { ensure } from '../../../../../prelude/ensure';
|
|
|
|
export const meta = {
|
|
requireCredential: true,
|
|
|
|
secure: true,
|
|
|
|
params: {
|
|
token: {
|
|
validator: $.str
|
|
}
|
|
}
|
|
};
|
|
|
|
export default define(meta, async (ps, user) => {
|
|
const token = ps.token.replace(/\s/g, '');
|
|
|
|
const profile = await UserProfiles.findOne(user.id).then(ensure);
|
|
|
|
if (profile.twoFactorTempSecret == null) {
|
|
throw new Error('二段階認証の設定が開始されていません');
|
|
}
|
|
|
|
const verified = (speakeasy as any).totp.verify({
|
|
secret: profile.twoFactorTempSecret,
|
|
encoding: 'base32',
|
|
token: token
|
|
});
|
|
|
|
if (!verified) {
|
|
throw new Error('not verified');
|
|
}
|
|
|
|
await UserProfiles.update({ userId: user.id }, {
|
|
twoFactorSecret: profile.twoFactorTempSecret,
|
|
twoFactorEnabled: true
|
|
});
|
|
});
|