pangolin_mirror/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-03-03 01:06:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

check and verify 2fa backup code

Browse Source
This commit is contained in:
Milo Schwartz
2024-10-05 15:45:01 -04:00
parent 4a5e0e1c57
commit 863f94c8db
6 changed files with 79 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
server/routers/auth/login.ts
View File

@@ -2,19 +2,14 @@ import { verify } from "@node-rs/argon2";
import lucia, { verifySession } from "@server/auth";
import db from "@server/db";
import { users } from "@server/db/schema";
import { sendEmail } from "@server/emails";
import { VerifyEmail } from "@server/emails/templates/verifyEmailCode";
import logger from "@server/logger";
import HttpCode from "@server/types/HttpCode";
import response from "@server/utils/response";
import { eq } from "drizzle-orm";
import { NextFunction, Request, Response } from "express";
import createHttpError from "http-errors";
import { decodeHex } from "oslo/encoding";
import { TOTPController } from "oslo/otp";
import { z } from "zod";
import { fromError } from "zod-validation-error";
import { verifyTotpCode } from "./verifyTotpCode";
import { verifyTotpCode } from "./2fa";
export const loginBodySchema = z.object({
email: z.string().email(),
@@ -108,6 +103,7 @@ export async function login(
const validOTP = await verifyTotpCode(
code,
existingUser.twoFactorSecret!,
existingUser.id,
);
if (!validOTP) {