2022-03-06 05:47:40 +00:00
|
|
|
package model
|
2021-12-01 12:11:29 +00:00
|
|
|
|
|
|
|
import (
|
2022-10-20 02:16:36 +00:00
|
|
|
"database/sql"
|
2022-12-23 04:00:23 +00:00
|
|
|
"encoding/base64"
|
2023-02-13 20:39:46 +00:00
|
|
|
"encoding/json"
|
2022-03-02 07:50:36 +00:00
|
|
|
"image"
|
2021-12-01 12:11:29 +00:00
|
|
|
"net/url"
|
|
|
|
"strconv"
|
2022-03-03 11:20:43 +00:00
|
|
|
"time"
|
2022-03-02 07:50:36 +00:00
|
|
|
|
|
|
|
"github.com/pquerna/otp"
|
2022-12-23 04:00:23 +00:00
|
|
|
"gopkg.in/yaml.v3"
|
2021-12-01 12:11:29 +00:00
|
|
|
)
|
|
|
|
|
2023-02-13 20:39:46 +00:00
|
|
|
type TOTPOptions struct {
|
|
|
|
Algorithm string `json:"algorithm"`
|
|
|
|
Algorithms []string `json:"algorithms"`
|
|
|
|
|
|
|
|
Length int `json:"length"`
|
|
|
|
Lengths []int `json:"lengths"`
|
|
|
|
|
|
|
|
Period int `json:"period"`
|
|
|
|
Periods []int `json:"periods"`
|
|
|
|
}
|
|
|
|
|
2021-12-01 12:11:29 +00:00
|
|
|
// TOTPConfiguration represents a users TOTP configuration row in the database.
|
|
|
|
type TOTPConfiguration struct {
|
2023-02-13 20:39:46 +00:00
|
|
|
ID int `db:"id"`
|
|
|
|
CreatedAt time.Time `db:"created_at"`
|
|
|
|
LastUsedAt sql.NullTime `db:"last_used_at"`
|
|
|
|
Username string `db:"username"`
|
|
|
|
Issuer string `db:"issuer"`
|
|
|
|
Algorithm string `db:"algorithm"`
|
|
|
|
Digits uint `db:"digits"`
|
|
|
|
Period uint `db:"period"`
|
|
|
|
Secret []byte `db:"secret"`
|
|
|
|
}
|
|
|
|
|
|
|
|
type TOTPConfigurationJSON struct {
|
|
|
|
CreatedAt time.Time `json:"created_at"`
|
|
|
|
LastUsedAt *time.Time `json:"last_used_at,omitempty"`
|
|
|
|
Issuer string `json:"issuer"`
|
|
|
|
Algorithm string `json:"algorithm"`
|
|
|
|
Digits int `json:"digits"`
|
|
|
|
Period int `json:"period"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// MarshalJSON returns the WebauthnDevice in a JSON friendly manner.
|
|
|
|
func (c TOTPConfiguration) MarshalJSON() (data []byte, err error) {
|
|
|
|
o := TOTPConfigurationJSON{
|
|
|
|
CreatedAt: c.CreatedAt,
|
|
|
|
Issuer: c.Issuer,
|
|
|
|
Algorithm: c.Algorithm,
|
|
|
|
Digits: int(c.Digits),
|
|
|
|
Period: int(c.Period),
|
|
|
|
}
|
|
|
|
|
|
|
|
if c.LastUsedAt.Valid {
|
|
|
|
o.LastUsedAt = &c.LastUsedAt.Time
|
|
|
|
}
|
|
|
|
|
|
|
|
return json.Marshal(o)
|
2022-10-20 02:16:36 +00:00
|
|
|
}
|
|
|
|
|
2023-04-11 11:11:11 +00:00
|
|
|
// LastUsed provides LastUsedAt as a *time.Time instead of sql.NullTime.
|
2022-10-20 02:16:36 +00:00
|
|
|
func (c *TOTPConfiguration) LastUsed() *time.Time {
|
|
|
|
if c.LastUsedAt.Valid {
|
2023-04-11 11:11:11 +00:00
|
|
|
value := time.Unix(c.LastUsedAt.Time.Unix(), int64(c.LastUsedAt.Time.Nanosecond()))
|
|
|
|
|
|
|
|
return &value
|
2022-10-20 02:16:36 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
2021-12-01 12:11:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// URI shows the configuration in the URI representation.
|
2022-09-03 01:51:02 +00:00
|
|
|
func (c *TOTPConfiguration) URI() (uri string) {
|
2021-12-01 12:11:29 +00:00
|
|
|
v := url.Values{}
|
|
|
|
v.Set("secret", string(c.Secret))
|
|
|
|
v.Set("issuer", c.Issuer)
|
|
|
|
v.Set("period", strconv.FormatUint(uint64(c.Period), 10))
|
|
|
|
v.Set("algorithm", c.Algorithm)
|
|
|
|
v.Set("digits", strconv.Itoa(int(c.Digits)))
|
|
|
|
|
|
|
|
u := url.URL{
|
|
|
|
Scheme: "otpauth",
|
|
|
|
Host: "totp",
|
|
|
|
Path: "/" + c.Issuer + ":" + c.Username,
|
|
|
|
RawQuery: v.Encode(),
|
|
|
|
}
|
|
|
|
|
|
|
|
return u.String()
|
|
|
|
}
|
2022-03-02 07:50:36 +00:00
|
|
|
|
2022-03-03 11:20:43 +00:00
|
|
|
// UpdateSignInInfo adjusts the values of the TOTPConfiguration after a sign in.
|
|
|
|
func (c *TOTPConfiguration) UpdateSignInInfo(now time.Time) {
|
2022-10-20 02:16:36 +00:00
|
|
|
c.LastUsedAt = sql.NullTime{Time: now, Valid: true}
|
2022-03-03 11:20:43 +00:00
|
|
|
}
|
|
|
|
|
2022-03-02 07:50:36 +00:00
|
|
|
// Key returns the *otp.Key using TOTPConfiguration.URI with otp.NewKeyFromURL.
|
2022-09-03 01:51:02 +00:00
|
|
|
func (c *TOTPConfiguration) Key() (key *otp.Key, err error) {
|
2022-03-02 07:50:36 +00:00
|
|
|
return otp.NewKeyFromURL(c.URI())
|
|
|
|
}
|
|
|
|
|
|
|
|
// Image returns the image.Image of the TOTPConfiguration using the Image func from the return of TOTPConfiguration.Key.
|
2022-09-03 01:51:02 +00:00
|
|
|
func (c *TOTPConfiguration) Image(width, height int) (img image.Image, err error) {
|
2022-03-02 07:50:36 +00:00
|
|
|
var key *otp.Key
|
|
|
|
|
|
|
|
if key, err = c.Key(); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return key.Image(width, height)
|
|
|
|
}
|
2022-12-23 04:00:23 +00:00
|
|
|
|
2023-04-11 11:11:11 +00:00
|
|
|
// ToData converts this TOTPConfiguration into the data format for exporting etc.
|
|
|
|
func (c *TOTPConfiguration) ToData() TOTPConfigurationData {
|
|
|
|
return TOTPConfigurationData{
|
2022-12-23 04:00:23 +00:00
|
|
|
CreatedAt: c.CreatedAt,
|
|
|
|
LastUsedAt: c.LastUsed(),
|
|
|
|
Username: c.Username,
|
|
|
|
Issuer: c.Issuer,
|
|
|
|
Algorithm: c.Algorithm,
|
|
|
|
Digits: c.Digits,
|
|
|
|
Period: c.Period,
|
|
|
|
Secret: base64.StdEncoding.EncodeToString(c.Secret),
|
|
|
|
}
|
2023-04-11 11:11:11 +00:00
|
|
|
}
|
2022-12-23 04:00:23 +00:00
|
|
|
|
2023-04-11 11:11:11 +00:00
|
|
|
// MarshalYAML marshals this model into YAML.
|
|
|
|
func (c *TOTPConfiguration) MarshalYAML() (any, error) {
|
|
|
|
return c.ToData(), nil
|
2022-12-23 04:00:23 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// UnmarshalYAML unmarshalls YAML into this model.
|
|
|
|
func (c *TOTPConfiguration) UnmarshalYAML(value *yaml.Node) (err error) {
|
|
|
|
o := &TOTPConfigurationData{}
|
|
|
|
|
|
|
|
if err = value.Decode(o); err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
if c.Secret, err = base64.StdEncoding.DecodeString(o.Secret); err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
c.CreatedAt = o.CreatedAt
|
|
|
|
c.Username = o.Username
|
|
|
|
c.Issuer = o.Issuer
|
|
|
|
c.Algorithm = o.Algorithm
|
|
|
|
c.Digits = o.Digits
|
|
|
|
c.Period = o.Period
|
|
|
|
|
|
|
|
if o.LastUsedAt != nil {
|
|
|
|
c.LastUsedAt = sql.NullTime{Valid: true, Time: *o.LastUsedAt}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// TOTPConfigurationData is used for marshalling/unmarshalling tasks.
|
|
|
|
type TOTPConfigurationData struct {
|
|
|
|
CreatedAt time.Time `yaml:"created_at"`
|
|
|
|
LastUsedAt *time.Time `yaml:"last_used_at"`
|
|
|
|
Username string `yaml:"username"`
|
|
|
|
Issuer string `yaml:"issuer"`
|
|
|
|
Algorithm string `yaml:"algorithm"`
|
|
|
|
Digits uint `yaml:"digits"`
|
|
|
|
Period uint `yaml:"period"`
|
|
|
|
Secret string `yaml:"secret"`
|
|
|
|
}
|
|
|
|
|
2023-04-11 11:11:11 +00:00
|
|
|
// TOTPConfigurationDataExport represents a TOTPConfiguration export file.
|
|
|
|
type TOTPConfigurationDataExport struct {
|
|
|
|
TOTPConfigurations []TOTPConfigurationData `yaml:"totp_configurations"`
|
|
|
|
}
|
|
|
|
|
2022-12-23 04:00:23 +00:00
|
|
|
// TOTPConfigurationExport represents a TOTPConfiguration export file.
|
|
|
|
type TOTPConfigurationExport struct {
|
|
|
|
TOTPConfigurations []TOTPConfiguration `yaml:"totp_configurations"`
|
|
|
|
}
|
2023-04-11 11:11:11 +00:00
|
|
|
|
|
|
|
// ToData converts this TOTPConfigurationExport into a TOTPConfigurationDataExport.
|
|
|
|
func (export TOTPConfigurationExport) ToData() TOTPConfigurationDataExport {
|
|
|
|
data := TOTPConfigurationDataExport{
|
|
|
|
TOTPConfigurations: make([]TOTPConfigurationData, len(export.TOTPConfigurations)),
|
|
|
|
}
|
|
|
|
|
|
|
|
for i, config := range export.TOTPConfigurations {
|
|
|
|
data.TOTPConfigurations[i] = config.ToData()
|
|
|
|
}
|
|
|
|
|
|
|
|
return data
|
|
|
|
}
|
|
|
|
|
|
|
|
// MarshalYAML marshals this model into YAML.
|
|
|
|
func (export TOTPConfigurationExport) MarshalYAML() (any, error) {
|
|
|
|
return export.ToData(), nil
|
|
|
|
}
|