mirror/api
1
0
Fork 0
mirror of https://github.com/unraid/api.git synced 2026-01-22 08:29:42 -06:00
Code Issues Packages Projects Releases Wiki Activity

fix: code->token and increase 2FA length to 64 chars

Browse Source
This commit is contained in:
Alexis
2021-09-24 04:13:20 +09:30
parent 5d40bd624f
commit 7d24bd24c5
1 changed files with 7 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
app/server.ts
View File

@@ -195,15 +195,15 @@ app.get('/', (_, res) => {
return res.send(getEndpoints(app));
});
const generateTwoFactorCode = () => crypto.randomBytes(58).toString('hex').substring(0, 10);
const generateTwoFactorToken = () => crypto.randomBytes(256).toString('hex').substring(0, 64);
// Either use the env passed in or generate a fresh one on app load
let twoFactorCode = process.env.TWO_FACTOR_CODE ?? generateTwoFactorCode();
let twoFactorToken = process.env.TWO_FACTOR_TOKEN ?? generateTwoFactorToken();
app.post('/verify', (req, res) => {
// Check code matches existing one
if (req.query.code === twoFactorCode) {
// Generate a new code
twoFactorCode = generateTwoFactorCode();
// Check token matches existing one
if (req.query.token === twoFactorToken) {
// Generate a new token
twoFactorToken = generateTwoFactorToken();
// Allow the user to pass
res.sendStatus(204);
@@ -212,7 +212,7 @@ app.post('/verify', (req, res) => {
// User failed verification
res.status(401);
res.send('Invalid 2FA code.');
res.send('Invalid 2FA token.');
});
// Handle errors by logging them and returning a 500.