Solucionado bug con la autenticación en 2 pasos

Carlos Garcia · Carlos Garcia · commit 93a1f0868e98 · 2025-06-07T01:16:30.000+02:00
diff --git a/Core/Controller/EditUser.php b/Core/Controller/EditUser.php
@@ -100,8 +100,8 @@ protected function createViews()
         $this->setSettings($mvn, 'btnOptions', false);
         $this->setSettings($mvn, 'btnPrint', false);
 
-        // add two factor authentication tab
-        $this->createViewsTwofactor();
+        // add two-factor authentication tab
+        $this->createViewsTwoFactor();
 
         // add roles tab
         if ($this->user->admin) {
@@ -115,7 +115,7 @@ protected function createViews()
         $this->createViewsEmails();
     }
 
-    protected function createViewsTwofactor(string $viewName = 'UserTwoFactor'): void
+    protected function createViewsTwoFactor(string $viewName = 'UserTwoFactor'): void
     {
         $this->addHtmlView($viewName, 'Tab\UserTwoFactor', 'User', 'two-factor-auth', 'fa-solid fa-key');
     }
@@ -308,7 +308,8 @@ protected function loadData($viewName, $view)
                     // prevent user self-destruction
                     $this->setSettings($viewName, 'btnDelete', false);
                 }
-                // is the user is admin, hide the EditRoleUser tab
+
+                // if the user is admin, hide the EditRoleUser tab
                 if ($view->model->admin && array_key_exists('EditRoleUser', $this->views)) {
                     $this->setSettings('EditRoleUser', 'active', false);
                 }
diff --git a/Core/Controller/Login.php b/Core/Controller/Login.php
@@ -44,10 +44,12 @@ class Login implements ControllerInterface
     /** @var string */
     public $title = 'Login';
 
+    /** @var string */
+    public $two_factor_user;
+
     /** @var boolean */
     private $two_factor_view = false;
 
-
     public function __construct(string $className, string $url = '')
     {
     }
@@ -310,6 +312,7 @@ protected function loginAction(Request $request): void
         }
 
         if ($user->two_factor_enabled) {
+            $this->two_factor_user = $user->nick;
             $this->two_factor_view = true;
             return;
         }
@@ -320,7 +323,9 @@ protected function loginAction(Request $request): void
     protected function validCodeAction(Request $request): void
     {
         $user = new User();
-        $user->loadFromCode($request->request->get('fsNick'));
+        if (!$user->loadFromCode($request->request->get('fsNick'))) {
+            Tools::log()->warning('user-not-found');
+        }
 
         if (!TwoFactorManager::verifyCode($user->two_factor_secret_key, $request->request->get('fsCode'))) {
             Tools::log()->warning('login-2fa-fail');
diff --git a/Core/View/Login/TwoFactor.html.twig b/Core/View/Login/TwoFactor.html.twig
@@ -8,18 +8,18 @@
                 <form action="{{ asset('login') }}" method="post" class="form">
                     {{ formToken() }}
                     <input type="hidden" name="action" value="valid-totp">
-                    <input type="hidden" name="fsNick" value="{{ fsc.user.nick }}">
+                    <input type="hidden" name="fsNick" value="{{ fsc.two_factor_user }}">
                     <div class="card mt-4">
                         <a href="{{ asset('login') }}">
                             {% set idfile = settings('default','idloginimage', 0) %}
                             {{ _self.loadLogo(idfile) }}
                         </a>
                         <div class="card-body">
-                            <p class="card-text text-center">Ingrese el codigo TOTP</p>
+                            <p class="card-text text-center">Ingrese el código TOTP</p>
                             <div class="mb-3">
                                 <div class="input-group">
                                     <span class="input-group-text">
-                                            <i class="fa-solid fa-user fa-fw" aria-hidden="true"></i>
+                                        <i class="fa-solid fa-user fa-fw" aria-hidden="true"></i>
                                     </span>
                                     <input type="text" name="fsCode" class="form-control" maxlength="50"
                                            placeholder="{{ trans('code') }}" required autocomplete="off"
diff --git a/Core/View/Tab/UserTwoFactor.html.twig b/Core/View/Tab/UserTwoFactor.html.twig
@@ -17,8 +17,8 @@
             <div class="input-group mb-3">
                 <input type="text" class="form-control" name="codetime" placeholder="{{ trans('code') }}" required/>
                 <button class="btn btn-primary" type="submit">
-                        {{ trans('save') }}
-                    </button>
+                    {{ trans('save') }}
+                </button>
             </div>
         </form>
     </div>

Original file line number	Diff line number	Diff line change
`@@ -100,8 +100,8 @@ protected function createViews()`
`100`	`100`	`$this->setSettings($mvn, 'btnOptions', false);`
`101`	`101`	`$this->setSettings($mvn, 'btnPrint', false);`
`102`	`102`
`103`		`- // add two factor authentication tab`
`104`		`- $this->createViewsTwofactor();`
	`103`	`+ // add two-factor authentication tab`
	`104`	`+ $this->createViewsTwoFactor();`
`105`	`105`
`106`	`106`	`// add roles tab`
`107`	`107`	`if ($this->user->admin) {`
`@@ -115,7 +115,7 @@ protected function createViews()`
`115`	`115`	`$this->createViewsEmails();`
`116`	`116`	`}`
`117`	`117`
`118`		`- protected function createViewsTwofactor(string $viewName = 'UserTwoFactor'): void`
	`118`	`+ protected function createViewsTwoFactor(string $viewName = 'UserTwoFactor'): void`
`119`	`119`	`{`
`120`	`120`	`$this->addHtmlView($viewName, 'Tab\UserTwoFactor', 'User', 'two-factor-auth', 'fa-solid fa-key');`
`121`	`121`	`}`
`@@ -308,7 +308,8 @@ protected function loadData($viewName, $view)`
`308`	`308`	`// prevent user self-destruction`
`309`	`309`	`$this->setSettings($viewName, 'btnDelete', false);`
`310`	`310`	`}`
`311`		`- // is the user is admin, hide the EditRoleUser tab`
	`311`	`+`
	`312`	`+ // if the user is admin, hide the EditRoleUser tab`
`312`	`313`	`if ($view->model->admin && array_key_exists('EditRoleUser', $this->views)) {`
`313`	`314`	`$this->setSettings('EditRoleUser', 'active', false);`
`314`	`315`	`}`
Original file line number	Diff line number	Diff line change
`@@ -44,10 +44,12 @@ class Login implements ControllerInterface`
`44`	`44`	`/** @var string */`
`45`	`45`	`public $title = 'Login';`
`46`	`46`
	`47`	`+ /** @var string */`
	`48`	`+ public $two_factor_user;`
	`49`	`+`
`47`	`50`	`/** @var boolean */`
`48`	`51`	`private $two_factor_view = false;`
`49`	`52`
`50`		`-`
`51`	`53`	`public function __construct(string $className, string $url = '')`
`52`	`54`	`{`
`53`	`55`	`}`
`@@ -310,6 +312,7 @@ protected function loginAction(Request $request): void`
`310`	`312`	`}`
`311`	`313`
`312`	`314`	`if ($user->two_factor_enabled) {`
	`315`	`+ $this->two_factor_user = $user->nick;`
`313`	`316`	`$this->two_factor_view = true;`
`314`	`317`	`return;`
`315`	`318`	`}`
`@@ -320,7 +323,9 @@ protected function loginAction(Request $request): void`
`320`	`323`	`protected function validCodeAction(Request $request): void`
`321`	`324`	`{`
`322`	`325`	`$user = new User();`
`323`		`- $user->loadFromCode($request->request->get('fsNick'));`
	`326`	`+ if (!$user->loadFromCode($request->request->get('fsNick'))) {`
	`327`	`+ Tools::log()->warning('user-not-found');`
	`328`	`+ }`
`324`	`329`
`325`	`330`	`if (!TwoFactorManager::verifyCode($user->two_factor_secret_key, $request->request->get('fsCode'))) {`
`326`	`331`	`Tools::log()->warning('login-2fa-fail');`