debesocial/biiproject-kit-v2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: implement premium Email 2FA authentication integrated with auth flow

Browse Source
This commit is contained in:
debesocial
2026-05-21 21:46:53 +07:00
parent a0673129ee
commit 0d083765ff
50 changed files with 543 additions and 162 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/Http/Controllers/Auth/AuthenticatedSessionController.php
+23
View File
@@ -38,6 +38,29 @@ class AuthenticatedSessionController extends Controller
// If user has 2FA enabled, redirect to challenge screen
if ($user->two_factor_confirmed_at && $user->two_factor_secret) {
$request->session()->put('two_factor_user_id', $user->id);
$request->session()->put('two_factor_type', 'totp');
Auth::guard('web')->logout();
$request->session()->forget('password_hash_web');
return redirect()->route('two-factor.challenge');
}
// If user has Email 2FA enabled, redirect to email challenge
if ($user->email_2fa_enabled) {
$code = str_pad(mt_rand(100000, 999999), 6, '0', STR_PAD_LEFT);
$user->update([
'email_2fa_code' => $code,
'email_2fa_expires_at' => now()->addMinutes(10),
]);
try {
\Illuminate\Support\Facades\Mail::to($user->email)->send(new \App\Mail\Send2FACode($code));
} catch (\Exception $e) {
\Illuminate\Support\Facades\Log::error("Failed to send 2FA Email Code: " . $e->getMessage());
}
$request->session()->put('two_factor_user_id', $user->id);
$request->session()->put('two_factor_type', 'email');
Auth::guard('web')->logout();
$request->session()->forget('password_hash_web');