apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19170 Commits
704 Branches
1176 Tags
2.1 GiB
Tag: Branch: Tree: apps/e2e-testing
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'apps/e2e-testing'
${ noResults }
Rocket.Chat/app/2fa/server/code/PasswordCheckFallback.ts

42 lines
1.0 KiB
Raw Permalink Normal View History Unescape

[NEW] Two Factor authentication via email (#15949)
6 years ago
import { Accounts } from 'meteor/accounts-base';
[IMPROVE] 2FA password enforcement setting and 2FA protection when saving settings or resetting E2E encryption (#18640) Co-authored-by: Diego Sampaio <chinello@gmail.com>
5 years ago
import { settings } from '../../../settings/server';
[NEW] Two Factor authentication via email (#15949)
6 years ago
import { ICodeCheck, IProcessInvalidCodeResult } from './ICodeCheck';
import { IUser } from '../../../../definition/IUser';
export class PasswordCheckFallback implements ICodeCheck {
public readonly name = 'password';
public isEnabled(user: IUser): boolean {
[IMPROVE] 2FA password enforcement setting and 2FA protection when saving settings or resetting E2E encryption (#18640) Co-authored-by: Diego Sampaio <chinello@gmail.com>
5 years ago
// TODO: Remove this setting for version 4.0 forcing the
[NEW] Two Factor authentication via email (#15949)
6 years ago
// password fallback for who has password set.
[IMPROVE] 2FA password enforcement setting and 2FA protection when saving settings or resetting E2E encryption (#18640) Co-authored-by: Diego Sampaio <chinello@gmail.com>
5 years ago
if (settings.get('Accounts_TwoFactorAuthentication_Enforce_Password_Fallback')) {
return user.services?.password?.bcrypt != null;
}
return false;
[NEW] Two Factor authentication via email (#15949)
6 years ago
}
public verify(user: IUser, code: string): boolean {
if (!this.isEnabled(user)) {
return false;
}
const passCheck = Accounts._checkPassword(user, {
digest: code.toLowerCase(),
algorithm: 'sha-256',
});
if (passCheck.error) {
return false;
}
return true;
}
public processInvalidCode(): IProcessInvalidCodeResult {
return {
codeGenerated: false,
};
}
}