app/Services/Users/TwoFactorSetupService.php

<?php

namespace App\Services\Users;

use App\Models\User;

class TwoFactorSetupService
{
    public const VALID_BASE32_CHARACTERS = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567';

    /**
     * Generate a 2FA token and store it in the database before returning the
     * QR code URL. This URL will need to be attached to a QR generating service in
     * order to function.
     *
     * @return array{image_url_data: string, secret: string}
     *
     * @throws \App\Exceptions\Model\DataValidationException
     */
    public function handle(User $user): array
    {
        $secret = '';
        try {
            for ($i = 0; $i < config('panel.auth.2fa.bytes', 16); $i++) {
                $secret .= substr(self::VALID_BASE32_CHARACTERS, random_int(0, 31), 1);
            }
        } catch (\Exception $exception) {
            throw new \RuntimeException($exception->getMessage(), 0, $exception);
        }

        $user->totp_secret = $secret;
        $user->save();

        $company = urlencode(preg_replace('/\s/', '', config('app.name')));

        return [
            'image_url_data' => sprintf(
                'otpauth://totp/%1$s:%2$s?secret=%3$s&issuer=%1$s',
                rawurlencode($company),
                rawurlencode($user->email),
                rawurlencode($secret),
            ),
            'secret' => $secret,
        ];
    }
}
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00			`<?php`

Switch namespace back to App 2024-03-12 22:39:16 -04:00			`namespace App\Services\Users;`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00
Switch namespace back to App 2024-03-12 22:39:16 -04:00			`use App\Models\User;`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00
			`class TwoFactorSetupService`
			`{`
Use more standardized phpcs 2021-01-23 12:33:34 -08:00			`public const VALID_BASE32_CHARACTERS = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567';`
Change 2FA service to generate the secret on our own and use an external QR service to display the image 2019-06-21 21:55:09 -07:00
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00			`/**`
Implement changes to 2FA system (#761) 2017-11-18 13:35:33 -05:00			`* Generate a 2FA token and store it in the database before returning the`
Change 2FA service to generate the secret on our own and use an external QR service to display the image 2019-06-21 21:55:09 -07:00			`* QR code URL. This URL will need to be attached to a QR generating service in`
			`* order to function.`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00			`*`
PHPstan updates (#1047) * Not found property rule * Make these “better” * Day 1 * Day 2 * Day 3 * Dat 4 * Remove disabled check * Day 4 continued * Run pint * Final changes hopefully * Pint fixes * Fix again * Reset these * Update app/Filament/Admin/Pages/Health.php Co-authored-by: MartinOscar <40749467+rmartinoscar@users.noreply.github.com> * Update app/Traits/CheckMigrationsTrait.php Co-authored-by: MartinOscar <40749467+rmartinoscar@users.noreply.github.com> --------- Co-authored-by: MartinOscar <40749467+rmartinoscar@users.noreply.github.com> 2025-03-03 14:41:19 -05:00			`* @return array{image_url_data: string, secret: string}`
			`*`
Switch namespace back to App 2024-03-12 22:39:16 -04:00			`* @throws \App\Exceptions\Model\DataValidationException`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00			`*/`
[UI] Display the 2FA token, show spinner on load (#3367) Co-authored-by: Dane Everitt <dane@daneeveritt.com> 2021-08-03 05:39:12 +02:00			`public function handle(User $user): array`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00			`{`
Change 2FA service to generate the secret on our own and use an external QR service to display the image 2019-06-21 21:55:09 -07:00			`$secret = '';`
			`try {`
Use config helper instead 2024-03-19 04:59:19 -04:00			`for ($i = 0; $i < config('panel.auth.2fa.bytes', 16); $i++) {`
Change 2FA service to generate the secret on our own and use an external QR service to display the image 2019-06-21 21:55:09 -07:00			`$secret .= substr(self::VALID_BASE32_CHARACTERS, random_int(0, 31), 1);`
			`}`
Laravel 10 (#4706) 2023-02-23 12:30:16 -07:00			`} catch (\Exception $exception) {`
			`throw new \RuntimeException($exception->getMessage(), 0, $exception);`
Change 2FA service to generate the secret on our own and use an external QR service to display the image 2019-06-21 21:55:09 -07:00			`}`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00
replace encrypt/ decrypt with encrypted casting 2024-05-28 15:24:20 +02:00			`$user->totp_secret = $secret;`
Remove user repository 2024-03-16 19:10:31 -04:00			`$user->save();`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00
Use config helper instead 2024-03-19 04:59:19 -04:00			`$company = urlencode(preg_replace('/\s/', '', config('app.name')));`
Change 2FA service to generate the secret on our own and use an external QR service to display the image 2019-06-21 21:55:09 -07:00
[UI] Display the 2FA token, show spinner on load (#3367) Co-authored-by: Dane Everitt <dane@daneeveritt.com> 2021-08-03 05:39:12 +02:00			`return [`
			`'image_url_data' => sprintf(`
			`'otpauth://totp/%1$s:%2$s?secret=%3$s&issuer=%1$s',`
			`rawurlencode($company),`
			`rawurlencode($user->email),`
			`rawurlencode($secret),`
			`),`
			`'secret' => $secret,`
			`];`
Should wrap up the base landing page stuff for accounts, next step is server rendering 2017-08-30 21:11:14 -05:00			`}`
			`}`