Check if user has TOTP enabled

matdave · matdave · commit 2d4d7e5179bf · 2022-12-28T14:54:43.000-06:00
diff --git a/.gitignore b/.gitignore
@@ -27,3 +27,4 @@ ehthumbs.db
 Thumbs.db
 /.php-cs-fixer.cache
 deploy*.sh
+vendor
diff --git a/core/components/twilio/model/twilio/src/Event/OnBeforeManagerPageInit.php b/core/components/twilio/model/twilio/src/Event/OnBeforeManagerPageInit.php
@@ -6,13 +6,16 @@ class OnBeforeManagerPageInit extends Event
 {
     public function run()
     {
+        // System Wide
         $enforceTotp = $this->getOption('twilio.totp_enforce', false);
+        // User Specific
+        $userTotp = $this->getOption('twilio.totp', false);
         $action = $this->getOption('action');
         $user = $this->modx->user;
         if (!$user || $user->id === 0) {
             return false;
         }
-        if ($enforceTotp && !$_SESSION['twilio_totp_verified'] && $action['controller'] !== 'totp') {
+        if ($enforceTotp && $userTotp && !$_SESSION['twilio_totp_verified'] && $action['controller'] !== 'totp') {
             $this->modx->sendRedirect(MODX_MANAGER_URL . 'index.php?a=totp&namespace=twilio');
         }
     }
diff --git a/core/components/twilio/model/twilio/src/Event/OnManagerPageInit.php b/core/components/twilio/model/twilio/src/Event/OnManagerPageInit.php
@@ -6,13 +6,16 @@ class OnManagerPageInit extends Event
 {
     public function run()
     {
+        // System Wide
         $enforceTotp = $this->getOption('twilio.totp_enforce', false);
+        // User Specific
+        $userTotp = $this->getOption('twilio.totp', false);
         $action = $this->getOption('action');
         $user = $this->modx->user;
         if (!$user || $user->id === 0) {
             return false;
         }
-        if ($enforceTotp && $action === 'security/profile') {
+        if (($enforceTotp || $userTotp) && $action === 'security/profile') {
             $this->modx->regClientStartupScript($this->twilio->getOption('jsUrl') . 'mgr/twilio.js');
             $profile = $user->getOne('Profile');
             $extended = $profile->get('extended');
diff --git a/core/components/twilio/model/twilio/src/Event/OnWebPagePrerender.php b/core/components/twilio/model/twilio/src/Event/OnWebPagePrerender.php
@@ -6,13 +6,16 @@ class OnWebPagePrerender extends Event
 {
     public function run()
     {
+        // System Wide
         $enforceTotp = $this->getOption('twilio.totp_enforce', false);
+        // User Specific
+        $userTotp = $this->getOption('twilio.totp', false);
         $totpChallenge = (int) $this->getOption('twilio.totp_challenge_page', 0);
         $user = $this->modx->user;
         if (!$user || $user->id === 0 || $this->modx->resource->id === $totpChallenge) {
             return;
         }
-        if ($enforceTotp && !$_SESSION['twilio_totp_verified'] && $totpChallenge > 0) {
+        if ($enforceTotp && $userTotp && !$_SESSION['twilio_totp_verified'] && $totpChallenge > 0) {
             if ($this->modx->getOption('twilio.totp_email_on_login', null, false)) {
                 $this->sendEmail($user);
             }

Original file line number	Diff line number	Diff line change
`@@ -6,13 +6,16 @@ class OnBeforeManagerPageInit extends Event`
`6`	`6`	`{`
`7`	`7`	`public function run()`
`8`	`8`	`{`
	`9`	`+ // System Wide`
`9`	`10`	`$enforceTotp = $this->getOption('twilio.totp_enforce', false);`
	`11`	`+ // User Specific`
	`12`	`+ $userTotp = $this->getOption('twilio.totp', false);`
`10`	`13`	`$action = $this->getOption('action');`
`11`	`14`	`$user = $this->modx->user;`
`12`	`15`	`if (!$user \|\| $user->id === 0) {`
`13`	`16`	`return false;`
`14`	`17`	`}`
`15`		`- if ($enforceTotp && !$_SESSION['twilio_totp_verified'] && $action['controller'] !== 'totp') {`
	`18`	`+ if ($enforceTotp && $userTotp && !$_SESSION['twilio_totp_verified'] && $action['controller'] !== 'totp') {`
`16`	`19`	`$this->modx->sendRedirect(MODX_MANAGER_URL . 'index.php?a=totp&namespace=twilio');`
`17`	`20`	`}`
`18`	`21`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,13 +6,16 @@ class OnManagerPageInit extends Event`
`6`	`6`	`{`
`7`	`7`	`public function run()`
`8`	`8`	`{`
	`9`	`+ // System Wide`
`9`	`10`	`$enforceTotp = $this->getOption('twilio.totp_enforce', false);`
	`11`	`+ // User Specific`
	`12`	`+ $userTotp = $this->getOption('twilio.totp', false);`
`10`	`13`	`$action = $this->getOption('action');`
`11`	`14`	`$user = $this->modx->user;`
`12`	`15`	`if (!$user \|\| $user->id === 0) {`
`13`	`16`	`return false;`
`14`	`17`	`}`
`15`		`- if ($enforceTotp && $action === 'security/profile') {`
	`18`	`+ if (($enforceTotp \|\| $userTotp) && $action === 'security/profile') {`
`16`	`19`	`$this->modx->regClientStartupScript($this->twilio->getOption('jsUrl') . 'mgr/twilio.js');`
`17`	`20`	`$profile = $user->getOne('Profile');`
`18`	`21`	`$extended = $profile->get('extended');`
Original file line number	Diff line number	Diff line change
`@@ -6,13 +6,16 @@ class OnWebPagePrerender extends Event`
`6`	`6`	`{`
`7`	`7`	`public function run()`
`8`	`8`	`{`
	`9`	`+ // System Wide`
`9`	`10`	`$enforceTotp = $this->getOption('twilio.totp_enforce', false);`
	`11`	`+ // User Specific`
	`12`	`+ $userTotp = $this->getOption('twilio.totp', false);`
`10`	`13`	`$totpChallenge = (int) $this->getOption('twilio.totp_challenge_page', 0);`
`11`	`14`	`$user = $this->modx->user;`
`12`	`15`	`if (!$user \|\| $user->id === 0 \|\| $this->modx->resource->id === $totpChallenge) {`
`13`	`16`	`return;`
`14`	`17`	`}`
`15`		`- if ($enforceTotp && !$_SESSION['twilio_totp_verified'] && $totpChallenge > 0) {`
	`18`	`+ if ($enforceTotp && $userTotp && !$_SESSION['twilio_totp_verified'] && $totpChallenge > 0) {`
`16`	`19`	`if ($this->modx->getOption('twilio.totp_email_on_login', null, false)) {`
`17`	`20`	`$this->sendEmail($user);`
`18`	`21`	`}`