a3f92cd322
- robthree/twofactorauth, Auth 설정·TotpService·2FA 뷰·라우트 - member TOTP 컬럼 DDL(login_tables, member_add_totp.sql) - 관리자 메뉴·레이아웃·필터·대시보드 등 연관 변경 - env 샘플에 auth.requireTotp 주석 Made-with: Cursor
50 lines
1.1 KiB
PHP
50 lines
1.1 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Libraries;
|
|
|
|
use Config\Auth as AuthConfig;
|
|
use RobThree\Auth\Providers\Qr\QRServerProvider;
|
|
use RobThree\Auth\TwoFactorAuth;
|
|
|
|
/**
|
|
* TOTP 생성·검증·QR (robthree/twofactorauth)
|
|
*/
|
|
class TotpService
|
|
{
|
|
private TwoFactorAuth $tfa;
|
|
|
|
public function __construct(?AuthConfig $authConfig = null)
|
|
{
|
|
$authConfig ??= config('Auth');
|
|
$this->tfa = new TwoFactorAuth(
|
|
new QRServerProvider(),
|
|
$authConfig->totpIssuer,
|
|
);
|
|
}
|
|
|
|
public function createSecret(): string
|
|
{
|
|
return $this->tfa->createSecret();
|
|
}
|
|
|
|
public function verify(string $plainSecret, string $code): bool
|
|
{
|
|
$code = preg_replace('/\s+/', '', $code) ?? '';
|
|
if (strlen($code) !== 6 || ! ctype_digit($code)) {
|
|
return false;
|
|
}
|
|
|
|
return $this->tfa->verifyCode($plainSecret, $code);
|
|
}
|
|
|
|
/**
|
|
* PNG data URI (외부 QR API 호출 — 네트워크 필요)
|
|
*/
|
|
public function getQrDataUri(string $accountLabel, string $secret): string
|
|
{
|
|
return $this->tfa->getQRCodeImageAsDataUri($accountLabel, $secret);
|
|
}
|
|
}
|