2023-05-05 21:23:59 +08:00
// Copyright 2023 The Casdoor Authors. All Rights Reserved.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
2023-06-24 18:39:54 +08:00
import React , { useState } from "react" ;
2023-05-05 21:23:59 +08:00
import { Button , Col , Form , Input , Result , Row , Steps } from "antd" ;
2023-06-21 18:56:37 +08:00
import * as ApplicationBackend from "../backend/ApplicationBackend" ;
2023-05-05 21:23:59 +08:00
import * as Setting from "../Setting" ;
import i18next from "i18next" ;
import * as MfaBackend from "../backend/MfaBackend" ;
import { CheckOutlined , KeyOutlined , LockOutlined , UserOutlined } from "@ant-design/icons" ;
import * as UserBackend from "../backend/UserBackend" ;
2023-06-21 18:56:37 +08:00
import { MfaSmsVerifyForm , MfaTotpVerifyForm , mfaSetup } from "./MfaVerifyForm" ;
2023-05-05 21:23:59 +08:00
2023-06-21 18:56:37 +08:00
export const EmailMfaType = "email" ;
2023-05-05 21:23:59 +08:00
export const SmsMfaType = "sms" ;
export const TotpMfaType = "app" ;
2023-06-24 18:39:54 +08:00
export const RecoveryMfaType = "recovery" ;
2023-05-05 21:23:59 +08:00
function CheckPasswordForm ( { user , onSuccess , onFail } ) {
const [ form ] = Form . useForm ( ) ;
const onFinish = ( { password } ) => {
const data = { ... user , password } ;
UserBackend . checkUserPassword ( data )
. then ( ( res ) => {
if ( res . status === "ok" ) {
onSuccess ( res ) ;
} else {
onFail ( res ) ;
}
} )
. finally ( ( ) => {
form . setFieldsValue ( { password : "" } ) ;
} ) ;
} ;
return (
< Form
form = { form }
style = { { width : "300px" , marginTop : "20px" } }
onFinish = { onFinish }
>
< Form . Item
name = "password"
rules = { [ { required : true , message : i18next . t ( "login:Please input your password!" ) } ] }
>
< Input . Password
prefix = { < LockOutlined / > }
placeholder = { i18next . t ( "general:Password" ) }
/ >
< / F o r m . I t e m >
< Form . Item >
< Button
style = { { marginTop : 24 } }
loading = { false }
block
type = "primary"
htmlType = "submit"
>
{ i18next . t ( "forget:Next Step" ) }
< / B u t t o n >
< / F o r m . I t e m >
< / F o r m >
) ;
}
2023-06-24 18:39:54 +08:00
export function MfaVerifyForm ( { mfaProps , application , user , onSuccess , onFail } ) {
2023-05-05 21:23:59 +08:00
const [ form ] = Form . useForm ( ) ;
const onFinish = ( { passcode } ) => {
2023-06-24 18:39:54 +08:00
const data = { passcode , mfaType : mfaProps . mfaType , ... user } ;
2023-05-05 21:23:59 +08:00
MfaBackend . MfaSetupVerify ( data )
. then ( ( res ) => {
if ( res . status === "ok" ) {
onSuccess ( res ) ;
} else {
onFail ( res ) ;
}
} )
. catch ( ( error ) => {
Setting . showMessage ( "error" , ` ${ i18next . t ( "general:Failed to connect to server" ) } : ${ error } ` ) ;
} )
. finally ( ( ) => {
form . setFieldsValue ( { passcode : "" } ) ;
} ) ;
} ;
2023-06-24 18:39:54 +08:00
if ( mfaProps === undefined || mfaProps === null ) {
2023-06-21 18:56:37 +08:00
return < div > < / d i v > ;
}
2023-06-24 18:39:54 +08:00
if ( mfaProps . mfaType === SmsMfaType || mfaProps . mfaType === EmailMfaType ) {
return < MfaSmsVerifyForm mfaProps = { mfaProps } onFinish = { onFinish } application = { application } method = { mfaSetup } user = { user } / > ;
} else if ( mfaProps . mfaType === TotpMfaType ) {
return < MfaTotpVerifyForm mfaProps = { mfaProps } onFinish = { onFinish } / > ;
2023-05-05 21:23:59 +08:00
} else {
return < div > < / d i v > ;
}
}
2023-06-21 18:56:37 +08:00
function EnableMfaForm ( { user , mfaType , recoveryCodes , onSuccess , onFail } ) {
2023-05-05 21:23:59 +08:00
const [ loading , setLoading ] = useState ( false ) ;
const requestEnableTotp = ( ) => {
const data = {
2023-06-21 18:56:37 +08:00
mfaType ,
2023-05-05 21:23:59 +08:00
... user ,
} ;
setLoading ( true ) ;
MfaBackend . MfaSetupEnable ( data ) . then ( res => {
if ( res . status === "ok" ) {
onSuccess ( res ) ;
} else {
onFail ( res ) ;
}
}
) . finally ( ( ) => {
setLoading ( false ) ;
} ) ;
} ;
return (
< div style = { { width : "400px" } } >
< p > { i18next . t ( "mfa:Please save this recovery code. Once your device cannot provide an authentication code, you can reset mfa authentication by this recovery code" ) } < / p >
< br / >
2023-06-21 18:56:37 +08:00
< code style = { { fontStyle : "solid" } } > { recoveryCodes [ 0 ] } < / c o d e >
2023-05-05 21:23:59 +08:00
< Button style = { { marginTop : 24 } } loading = { loading } onClick = { ( ) => {
requestEnableTotp ( ) ;
} } block type = "primary" >
{ i18next . t ( "general:Enable" ) }
< / B u t t o n >
< / d i v >
) ;
}
class MfaSetupPage extends React . Component {
constructor ( props ) {
super ( props ) ;
this . state = {
account : props . account ,
2023-06-21 18:56:37 +08:00
application : this . props . application ? ? null ,
applicationName : props . account . signupApplication ? ? "" ,
2023-05-17 01:13:13 +08:00
isAuthenticated : props . isAuthenticated ? ? false ,
isPromptPage : props . isPromptPage ,
redirectUri : props . redirectUri ,
current : props . current ? ? 0 ,
2023-06-21 18:56:37 +08:00
mfaType : props . mfaType ? ? new URLSearchParams ( props . location ? . search ) ? . get ( "mfaType" ) ? ? SmsMfaType ,
2023-05-05 21:23:59 +08:00
mfaProps : null ,
} ;
}
componentDidMount ( ) {
this . getApplication ( ) ;
}
2023-05-17 01:13:13 +08:00
componentDidUpdate ( prevProps , prevState , snapshot ) {
2023-06-24 18:39:54 +08:00
if ( this . state . isAuthenticated === true && ( this . state . mfaProps === null || this . state . mfaType !== prevState . mfaType ) ) {
2023-05-17 01:13:13 +08:00
MfaBackend . MfaSetupInitiate ( {
2023-06-21 18:56:37 +08:00
mfaType : this . state . mfaType ,
2023-05-17 01:13:13 +08:00
... this . getUser ( ) ,
} ) . then ( ( res ) => {
if ( res . status === "ok" ) {
this . setState ( {
mfaProps : res . data ,
} ) ;
} else {
Setting . showMessage ( "error" , i18next . t ( "mfa:Failed to initiate MFA" ) ) ;
}
} ) ;
}
}
2023-05-05 21:23:59 +08:00
getApplication ( ) {
2023-06-21 18:56:37 +08:00
if ( this . state . application !== null ) {
return ;
}
2023-05-17 01:13:13 +08:00
ApplicationBackend . getApplication ( "admin" , this . state . applicationName )
2023-06-27 20:33:47 +07:00
. then ( ( res ) => {
if ( res !== null ) {
if ( res . status === "error" ) {
Setting . showMessage ( "error" , res . msg ) ;
return ;
}
2023-05-05 21:23:59 +08:00
this . setState ( {
2023-06-27 20:33:47 +07:00
application : res ,
2023-05-05 21:23:59 +08:00
} ) ;
} else {
Setting . showMessage ( "error" , i18next . t ( "mfa:Failed to get application" ) ) ;
}
} ) ;
}
getUser ( ) {
return {
name : this . state . account . name ,
owner : this . state . account . owner ,
} ;
}
renderStep ( ) {
switch ( this . state . current ) {
case 0 :
2023-06-24 18:39:54 +08:00
return (
< CheckPasswordForm
user = { this . getUser ( ) }
onSuccess = { ( ) => {
this . setState ( {
current : this . state . current + 1 ,
isAuthenticated : true ,
} ) ;
} }
onFail = { ( res ) => {
Setting . showMessage ( "error" , i18next . t ( "mfa:Failed to initiate MFA" ) ) ;
} }
/ >
) ;
2023-05-05 21:23:59 +08:00
case 1 :
2023-05-17 01:13:13 +08:00
if ( ! this . state . isAuthenticated ) {
return null ;
}
2023-06-21 18:56:37 +08:00
return (
< div >
< MfaVerifyForm
2023-06-24 18:39:54 +08:00
mfaProps = { this . state . mfaProps }
2023-06-21 18:56:37 +08:00
application = { this . state . application }
user = { this . props . account }
onSuccess = { ( ) => {
this . setState ( {
current : this . state . current + 1 ,
} ) ;
} }
onFail = { ( res ) => {
Setting . showMessage ( "error" , i18next . t ( "general:Failed to verify" ) ) ;
} }
/ >
< Col span = { 24 } style = { { display : "flex" , justifyContent : "left" } } >
{ ( this . state . mfaType === EmailMfaType || this . props . account . mfaEmailEnabled ) ? null :
< Button type = { "link" } onClick = { ( ) => {
this . setState ( {
mfaType : EmailMfaType ,
} ) ;
}
} > { i18next . t ( "mfa:Use Email" ) } < / B u t t o n >
}
{
( this . state . mfaType === SmsMfaType || this . props . account . mfaPhoneEnabled ) ? null :
< Button type = { "link" } onClick = { ( ) => {
this . setState ( {
mfaType : SmsMfaType ,
} ) ;
}
} > { i18next . t ( "mfa:Use SMS" ) } < / B u t t o n >
}
2023-06-24 18:39:54 +08:00
{
( this . state . mfaType === TotpMfaType ) ? null :
< Button type = { "link" } onClick = { ( ) => {
this . setState ( {
mfaType : TotpMfaType ,
} ) ;
}
} > { i18next . t ( "mfa:Use Authenticator App" ) } < / B u t t o n >
}
2023-06-21 18:56:37 +08:00
< / C o l >
< / d i v >
) ;
2023-05-05 21:23:59 +08:00
case 2 :
2023-05-17 01:13:13 +08:00
if ( ! this . state . isAuthenticated ) {
return null ;
}
2023-06-24 18:39:54 +08:00
return (
< EnableMfaForm user = { this . getUser ( ) } mfaType = { this . state . mfaType } recoveryCodes = { this . state . mfaProps . recoveryCodes }
onSuccess = { ( ) => {
Setting . showMessage ( "success" , i18next . t ( "general:Enabled successfully" ) ) ;
if ( this . state . isPromptPage && this . state . redirectUri ) {
Setting . goToLink ( this . state . redirectUri ) ;
} else {
Setting . goToLink ( "/account" ) ;
}
} }
onFail = { ( res ) => {
Setting . showMessage ( "error" , ` ${ i18next . t ( "general:Failed to enable" ) } : ${ res . msg } ` ) ;
} } / >
) ;
2023-05-05 21:23:59 +08:00
default :
return null ;
}
}
render ( ) {
if ( ! this . props . account ) {
return (
< Result
status = "403"
title = "403 Unauthorized"
subTitle = { i18next . t ( "general:Sorry, you do not have permission to access this page or logged in status invalid." ) }
extra = { < a href = "/" > < Button type = "primary" > { i18next . t ( "general:Back Home" ) } < / B u t t o n > < / a > }
/ >
) ;
}
return (
< Row >
< Col span = { 24 } style = { { justifyContent : "center" } } >
< Row >
< Col span = { 24 } >
2023-06-24 18:39:54 +08:00
< p style = { { textAlign : "center" , fontSize : "28px" } } >
{ i18next . t ( "mfa:Protect your account with Multi-factor authentication" ) } < / p >
< p style = { { textAlign : "center" , fontSize : "16px" , marginTop : "10px" } } > { i18next . t ( "mfa:Each time you sign in to your Account, you'll need your password and a authentication code" ) } < / p >
2023-05-05 21:23:59 +08:00
< / C o l >
< / R o w >
2023-06-24 18:39:54 +08:00
< Steps current = { this . state . current }
items = { [
{ title : i18next . t ( "mfa:Verify Password" ) , icon : < UserOutlined / > } ,
{ title : i18next . t ( "mfa:Verify Code" ) , icon : < KeyOutlined / > } ,
{ title : i18next . t ( "general:Enable" ) , icon : < CheckOutlined / > } ,
] }
style = { { width : "90%" , maxWidth : "500px" , margin : "auto" , marginTop : "50px" ,
} } >
< / S t e p s >
2023-05-05 21:23:59 +08:00
< / C o l >
< Col span = { 24 } style = { { display : "flex" , justifyContent : "center" } } >
2023-05-17 01:13:13 +08:00
< div style = { { marginTop : "10px" , textAlign : "center" } } >
{ this . renderStep ( ) }
< / d i v >
2023-05-05 21:23:59 +08:00
< / C o l >
< / R o w >
) ;
}
}
export default MfaSetupPage ;
