shortcode_8php_source.html

<?php

namespace Bitrix\Main\Authentication;


use Bitrix\Main;

use Bitrix\Main\Security\Mfa;

use Bitrix\Main\Authentication\Internal\UserAuthCodeTable;


class ShortCode

{

    protected $context;

    protected $type;

    protected $code;

    protected $checkInterval = 300; //seconds, a half of the real time window

    protected $resendInterval = 60; //seconds


    public function __construct(Context $context, $type = UserAuthCodeTable::TYPE_EMAIL)

    {

        $this->context = $context;

        $this->type = $type;


        if(!$this->load())

        {

            throw new Main\ObjectException("User probably not found: ".$context->getUserId());

        }

    }


    public function generate()

    {

        $totp = new Mfa\TotpAlgorithm();

        $totp->setInterval($this->checkInterval);

        $totp->setSecret($this->code->getOtpSecret());


        $timecode = $totp->timecode(time());

        $shortCode = $totp->generateOTP($timecode);


        return $shortCode;

    }


    public function verify($code)

    {

        $result = new Main\Result();


        $attempts = (int)$this->code->getAttempts();


        if($attempts >= 3)

        {

            $result->addError(new Main\Error("Retry count exceeded.", "ERR_RETRY_COUNT"));

            return $result;

        }


        $totp = new Main\Security\Mfa\TotpAlgorithm();

        $totp->setInterval($this->checkInterval);

        $totp->setSecret($this->code->getOtpSecret());


        $otpResult = false;

        try

        {

            list($otpResult, ) = $totp->verify($code);

        }

        catch(Main\ArgumentException $e)

        {

        }


        if($otpResult)

        {

            $this->code->setDateSent(null);

            $this->code->setDateResent(null);

        }

        else

        {

            $result->addError(new Main\Error("Incorrect code.", "ERR_CONFIRM_CODE"));


            $this->code->setAttempts($attempts + 1);

        }


        $this->code->save();


        return $result;

    }


    public function checkDateSent()

    {

        $result = new Main\Result();


        $resultData = [

            "checkInterval" => $this->checkInterval*2,

            "resendInterval" => $this->resendInterval,

        ];


        //alowed only once in a interval

        if($this->code->getDateResent())

        {

            $currentDateTime = new Main\Type\DateTime();

            $interval = $currentDateTime->getTimestamp() - $this->code->getDateResent()->getTimestamp();


            if($interval < $this->resendInterval)

            {

                $resultData["secondsLeft"] = $this->resendInterval - $interval;

                $resultData["secondsPassed"] = $interval;

                $result->addError(new Main\Error("Timeout not expired yet."));

            }

        }


        $result->setData($resultData);


        return $result;

    }


    public function saveDateSent()

    {

        $currentDateTime = new Main\Type\DateTime();


        if($this->code->getDateSent())

        {

            if(($currentDateTime->getTimestamp() - $this->code->getDateSent()->getTimestamp()) > $this->checkInterval*2)

            {

                //reset attempts only for the new code (when time passes)

                $this->code->setAttempts(0);

                $this->code->setDateSent(null);

            }

        }


        if(!$this->code->getDateSent())

        {

            //first time only

            $this->code->setDateSent($currentDateTime);

        }

        $this->code->setDateResent($currentDateTime);


        $this->code->save();


        return true;

    }


    public function getUser()

    {

        return $this->code->fillUser();

    }


    public static function deleteByUser($userId)

    {

        UserAuthCodeTable::deleteByFilter(["=USER_ID" => $userId]);

    }


    protected function load()

    {

        $userId = $this->context->getUserId();

        $primaryKey = [

            "USER_ID" => $userId,

            "CODE_TYPE" => $this->type,

        ];


        $code = UserAuthCodeTable::getById($primaryKey)->fetchObject();


        if(!$code)

        {

            //first time for the user, should create a record

            $code = UserAuthCodeTable::createObject();

            $code->setUserId($userId);

            $code->setCodeType($this->type);


            $result = $code->save();

            if(!$result->isSuccess())

            {

                return false;

            }

        }


        $this->code = $code;


        return true;

    }


}


Bitrix\Main\ArgumentException
Definition exception.php:34

Bitrix\Main\Authentication\Context
Definition context.php:13

Bitrix\Main\Authentication\Internal\UserAuthCodeTable
Definition userauthcodetable.php:33

Bitrix\Main\Authentication\Internal\UserAuthCodeTable\TYPE_EMAIL
const TYPE_EMAIL
Definition userauthcodetable.php:36

Bitrix\Main\Authentication\ShortCode
Definition shortcode.php:16

Bitrix\Main\Authentication\ShortCode\$resendInterval
$resendInterval
Definition shortcode.php:23

Bitrix\Main\Authentication\ShortCode\deleteByUser
static deleteByUser($userId)
Definition shortcode.php:177

Bitrix\Main\Authentication\ShortCode\__construct
__construct(Context $context, $type=UserAuthCodeTable::TYPE_EMAIL)
Definition shortcode.php:30

Bitrix\Main\Authentication\ShortCode\load
load()
Definition shortcode.php:182

Bitrix\Main\Authentication\ShortCode\$checkInterval
$checkInterval
Definition shortcode.php:22

Bitrix\Main\Authentication\ShortCode\checkDateSent
checkDateSent()
Definition shortcode.php:108

Bitrix\Main\Authentication\ShortCode\$code
$code
Definition shortcode.php:21

Bitrix\Main\Authentication\ShortCode\generate
generate()
Definition shortcode.php:45

Bitrix\Main\Authentication\ShortCode\$type
$type
Definition shortcode.php:19

Bitrix\Main\Authentication\ShortCode\saveDateSent
saveDateSent()
Definition shortcode.php:140

Bitrix\Main\Authentication\ShortCode\verify
verify($code)
Definition shortcode.php:62

Bitrix\Main\Authentication\ShortCode\$context
$context
Definition shortcode.php:18

Bitrix\Main\Authentication\ShortCode\getUser
getUser()
Definition shortcode.php:169

Bitrix\Main\Error
Definition error.php:14

Bitrix\Main\ORM\Data\DataManager\getById
static getById($id)
Definition datamanager.php:377

Bitrix\Main\ORM\Data\DataManager\createObject
static createObject($setDefaultValues=true)
Definition datamanager.php:245

Bitrix\Main\ORM\Data\Result
Definition result.php:16

Bitrix\Main\ObjectException
Definition exception.php:192

Bitrix\Main\Security\Mfa\TotpAlgorithm
Definition totpalgorithm.php:13

Bitrix\Main\Type\DateTime
Definition datetime.php:9

Bitrix\Main\Authentication
Definition application.php:9

Bitrix\Main\Security\Mfa
Definition hotpalgorithm.php:3

Bitrix\Main