Home Explore Help
Sign In
fusionpbx
/
fusionpbx-framework
mirror of https://github.com/fusionpbx/fusionpbx-framework.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: aab1b7d772
Branches Tags
fusionpbx-frame...
/
core
/
authentication
/
resources
/
classes
/
plugins
/
totp.php

totp.php 16 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433 
  1. <?php
    2. 

  2. /*
    3. 

  3. 	FusionPBX
    4. 

  4. 	Version: MPL 1.1
    5. 

  5. 

  6. 	The contents of this file are subject to the Mozilla Public License Version
    7. 

  7. 	1.1 (the "License"); you may not use this file except in compliance with
    8. 

  8. 	the License. You may obtain a copy of the License at
    9. 

  9. 	http://www.mozilla.org/MPL/
    10. 

  10. 

  11. 	Software distributed under the License is distributed on an "AS IS" basis,
    12. 

  12. 	WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
    13. 

  13. 	for the specific language governing rights and limitations under the
    14. 

  14. 	License.
    15. 

  15. 

  16. 	The Original Code is FusionPBX
    17. 

  17. 

  18. 	The Initial Developer of the Original Code is
    19. 

  19. 	Mark J Crane <[email protected]>
    20. 

  20. 	Portions created by the Initial Developer are Copyright (C) 2008-2023
    21. 

  21. 	the Initial Developer. All Rights Reserved.
    22. 

  22. 

  23. 	Contributor(s):
    24. 

  24. 	Mark J Crane <[email protected]>
    25. 

  25. */
    26. 

  26. 

  27. /**
    28. 

  28.  * plugin_totp
    29. 

  29.  *
    30. 

  30.  * @method totp time based one time password authenticate the user
    31. 

  31.  */
    32. 

  32. class plugin_totp {
    33. 

  33. 

  34. 	/**
    35. 

  35. 	 * Define variables and their scope
    36. 

  36. 	 */
    37. 

  37. 	public $debug;
    38. 

  38. 	public $domain_name;
    39. 

  39. 	public $username;
    40. 

  40. 	public $password;
    41. 

  41. 	public $user_uuid;
    42. 

  42. 	public $user_email;
    43. 

  43. 	public $contact_uuid;
    44. 

  44. 	private $user_totp_secret;
    45. 

  45. 

  46. 	/**
    47. 

  47. 	 * time based one time password aka totp
    48. 

  48. 	 * @return array [authorized] => true or false
    49. 

  49. 	 */
    50. 

  50. 	function totp() {
    51. 

  51. 

  52. 		//pre-process some settings
    53. 

  53. 			$settings['theme']['favicon'] = !empty($_SESSION['theme']['favicon']['text']) ? $_SESSION['theme']['favicon']['text'] : PROJECT_PATH.'/themes/default/favicon.ico';
    54. 

  54. 			$settings['login']['destination'] = !empty($_SESSION['login']['destination']['text']) ? $_SESSION['login']['destination']['text'] : '';
    55. 

  55. 			$settings['users']['unique'] = !empty($_SESSION['users']['unique']['text']) ? $_SESSION['users']['unique']['text'] : '';
    56. 

  56. 			$settings['theme']['logo'] = !empty($_SESSION['theme']['logo']['text']) ? $_SESSION['theme']['logo']['text'] : PROJECT_PATH.'/themes/default/images/logo_login.png';
    57. 

  57. 			$settings['theme']['login_logo_width'] = !empty($_SESSION['theme']['login_logo_width']['text']) ? $_SESSION['theme']['login_logo_width']['text'] : 'auto; max-width: 300px';
    58. 

  58. 			$settings['theme']['login_logo_height'] = !empty($_SESSION['theme']['login_logo_height']['text']) ? $_SESSION['theme']['login_logo_height']['text'] : 'auto; max-height: 300px';
    59. 

  59. 			$settings['theme']['message_delay'] = isset($_SESSION['theme']['message_delay']) ? 1000 * (float) $_SESSION['theme']['message_delay'] : 3000;
    60. 

  60. 			$settings['theme']['background_video'] = isset($_SESSION['theme']['background_video'][0]) ? $_SESSION['theme']['background_video'][0] : null;
    61. 

  61. 

  62. 		//get the username
    63. 

  63. 			if (isset($_SESSION["username"])) {
    64. 

  64. 				$this->username = $_SESSION["username"];
    65. 

  65. 			}
    66. 

  66. 			if (isset($_POST['username'])) {
    67. 

  67. 				$this->username = $_POST['username'];
    68. 

  68. 				$_SESSION["username"] = $this->username;
    69. 

  69. 			}
    70. 

  70. 

  71. 		//request the username
    72. 

  72. 			if (!$this->username && !isset($_POST['authentication_code'])) {
    73. 

  73. 

  74. 				//set a default template
    75. 

  75. 				$_SESSION['domain']['template']['name'] = 'default';
    76. 

  76. 				$_SESSION['theme']['menu_brand_image']['text'] = PROJECT_PATH.'/themes/default/images/logo.png';
    77. 

  77. 				$_SESSION['theme']['menu_brand_type']['text'] = 'image';
    78. 

  78. 

  79. 				//get the domain
    80. 

  80. 				$domain_array = explode(":", $_SERVER["HTTP_HOST"]);
    81. 

  81. 				$domain_name = $domain_array[0];
    82. 

  82. 

  83. 				//temp directory
    84. 

  84. 				$_SESSION['server']['temp']['dir'] = '/tmp';
    85. 

  85. 

  86. 				//create token
    87. 

  87. 				//$object = new token;
    88. 

  88. 				//$token = $object->create('login');
    89. 

  89. 

  90. 				//add multi-lingual support
    91. 

  91. 				$language = new text;
    92. 

  92. 				$text = $language->get(null, '/core/authentication');
    93. 

  93. 

  94. 				//initialize a template object
    95. 

  95. 				$view = new template();
    96. 

  96. 				$view->engine = 'smarty';
    97. 

  97. 				$view->template_dir = $_SERVER["DOCUMENT_ROOT"].PROJECT_PATH.'/core/authentication/resources/views/';
    98. 

  98. 				$view->cache_dir = $_SESSION['server']['temp']['dir'];
    99. 

  99. 				$view->init();
    100. 

  100. 

  101. 				//assign default values to the template
    102. 

  102. 				$view->assign("project_path", PROJECT_PATH);
    103. 

  103. 				$view->assign("login_destination_url", $settings['login']['destination']);
    104. 

  104. 				$view->assign("favicon", $settings['theme']['favicon']);
    105. 

  105. 				$view->assign("login_title", $text['label-username']);
    106. 

  106. 				$view->assign("login_username", $text['label-username']);
    107. 

  107. 				$view->assign("login_logo_width", $settings['theme']['login_logo_width']);
    108. 

  108. 				$view->assign("login_logo_height", $settings['theme']['login_logo_height']);
    109. 

  109. 				$view->assign("login_logo_source", $settings['theme']['logo']);
    110. 

  110. 				$view->assign("button_login", $text['button-login']);
    111. 

  111. 				$view->assign("favicon", $settings['theme']['favicon']);
    112. 

  112. 				$view->assign("message_delay", $settings['theme']['message_delay']);
    113. 

  113. 

  114. 				//messages
    115. 

  115. 				$view->assign('messages', message::html(true, '		'));
    116. 

  116. 

  117. 				//show the views
    118. 

  118. 				$content = $view->render('username.htm');
    119. 

  119. 				echo $content;
    120. 

  120. 				exit;
    121. 

  121. 			}
    122. 

  122. 

  123. 		//show the authentication code view
    124. 

  124. 			if (!isset($_POST['authentication_code'])) {
    125. 

  125. 

  126. 				//get the username
    127. 

  127. 				if (!isset($this->username) && isset($_REQUEST['username'])) {
    128. 

  128. 					$this->username = $_REQUEST['username'];
    129. 

  129. 					$_SESSION['username'] = $this->username;
    130. 

  130. 				}
    131. 

  131. 

  132. 				//get the domain name
    133. 

  133. 				if (!empty($_SESSION['username'])) {
    134. 

  134. 					$auth = new authentication;
    135. 

  135. 					$auth->get_domain();
    136. 

  136. 					$this->domain_uuid = $_SESSION['domain_uuid'];
    137. 

  137. 					$this->domain_name = $_SESSION['domain_name'];
    138. 

  138. 					$this->username = $_SESSION['username'];
    139. 

  139. 				}
    140. 

  140. 

  141. 				//get the user details
    142. 

  142. 				$sql = "select user_uuid, username, user_email, contact_uuid, user_totp_secret\n";
    143. 

  143. 				$sql .= "from v_users\n";
    144. 

  144. 				$sql .= "where (\n";
    145. 

  145. 				$sql .= "	username = :username\n";
    146. 

  146. 				$sql .= "	or user_email = :username\n";
    147. 

  147. 				$sql .= ")\n";
    148. 

  148. 				if (empty($_SESSION["users"]["unique"]["text"]) || $_SESSION["users"]["unique"]["text"] != "global") {
    149. 

  149. 					//unique username per domain (not globally unique across system - example: email address)
    150. 

  150. 					$sql .= "and domain_uuid = :domain_uuid ";
    151. 

  151. 					$parameters['domain_uuid'] = $this->domain_uuid;
    152. 

  152. 				}
    153. 

  153. 				$sql .= "and (user_type = 'default' or user_type is null) ";
    154. 

  154. 				$parameters['username'] = $this->username;
    155. 

  155. 				$database = new database;
    156. 

  156. 				$row = $database->select($sql, $parameters, 'row');
    157. 

  157. 				if (empty($row) || !is_array($row) || @sizeof($row) == 0) {
    158. 

  158. 					//clear submitted usernames
    159. 

  159. 					unset($this->username, $_SESSION['username'], $_REQUEST['username'], $_POST['username']);
    160. 

  160. 

  161. 					//build the result array
    162. 

  162. 					$result["plugin"] = "totp";
    163. 

  163. 					$result["domain_uuid"] = $_SESSION["domain_uuid"];
    164. 

  164. 					$result["domain_name"] = $_SESSION["domain_name"];
    165. 

  165. 					$result["authorized"] = false;
    166. 

  166. 

  167. 					//retun the array
    168. 

  168. 					return $result;
    169. 

  169. 				}
    170. 

  170. 				unset($parameters);
    171. 

  171. 

  172. 				//set class variables
    173. 

  173. 				$this->user_uuid = $row['user_uuid'];
    174. 

  174. 				$this->user_email = $row['user_email'];
    175. 

  175. 				$this->contact_uuid = $row['contact_uuid'];
    176. 

  176. 				$this->user_totp_secret = $row['user_totp_secret'];
    177. 

  177. 

  178. 				//set a few session variables
    179. 

  179. 				$_SESSION["user_uuid"] = $row['user_uuid'];
    180. 

  180. 				$_SESSION["username"] = $row['username'];
    181. 

  181. 				$_SESSION["user_email"] = $row['user_email'];
    182. 

  182. 				$_SESSION["contact_uuid"] = $row["contact_uuid"];
    183. 

  183. 

  184. 				//set a default template
    185. 

  185. 				$_SESSION['domain']['template']['name'] = 'default';
    186. 

  186. 				$_SESSION['theme']['menu_brand_image']['text'] = PROJECT_PATH.'/themes/default/images/logo.png';
    187. 

  187. 				$_SESSION['theme']['menu_brand_type']['text'] = 'image';
    188. 

  188. 

  189. 				//get the domain
    190. 

  190. 				$domain_array = explode(":", $_SERVER["HTTP_HOST"]);
    191. 

  191. 				$domain_name = $domain_array[0];
    192. 

  192. 

  193. 				//temp directory
    194. 

  194. 				$_SESSION['server']['temp']['dir'] = '/tmp';
    195. 

  195. 

  196. 				//create token
    197. 

  197. 				//$object = new token;
    198. 

  198. 				//$token = $object->create('login');
    199. 

  199. 

  200. 				//add multi-lingual support
    201. 

  201. 				$language = new text;
    202. 

  202. 				$text = $language->get(null, '/core/authentication');
    203. 

  203. 

  204. 				//initialize a template object
    205. 

  205. 				$view = new template();
    206. 

  206. 				$view->engine = 'smarty';
    207. 

  207. 				$view->template_dir = $_SERVER["DOCUMENT_ROOT"].PROJECT_PATH.'/core/authentication/resources/views/';
    208. 

  208. 				$view->cache_dir = $_SESSION['server']['temp']['dir'];
    209. 

  209. 				$view->init();
    210. 

  210. 

  211. 				//assign values to the template
    212. 

  212. 				$view->assign("project_path", PROJECT_PATH);
    213. 

  213. 				$view->assign("login_destination_url", $settings['login']['destination']);
    214. 

  214. 				$view->assign("favicon", $settings['theme']['favicon']);
    215. 

  215. 				$view->assign("login_title", $text['label-verify']);
    216. 

  216. 				$view->assign("login_totp_description", $text['label-totp_description']);
    217. 

  217. 				$view->assign("login_authentication_code", $text['label-authentication_code']);
    218. 

  218. 				$view->assign("login_logo_width", $settings['theme']['login_logo_width']);
    219. 

  219. 				$view->assign("login_logo_height", $settings['theme']['login_logo_height']);
    220. 

  220. 				$view->assign("login_logo_source", $settings['theme']['logo']);
    221. 

  221. 				$view->assign("favicon", $settings['theme']['favicon']);
    222. 

  222. 				$view->assign("background_video", $settings['theme']['background_video']);
    223. 

  223. 				if (!empty($_SESSION['username'])) {
    224. 

  224. 					$view->assign("username", $_SESSION['username']);
    225. 

  225. 					$view->assign("button_cancel", $text['button-cancel']);
    226. 

  226. 				}
    227. 

  227. 

  228. 				//show the views
    229. 

  229. 				if (!empty($_SESSION['authentication']['plugin']['database']['authorized']) && empty($this->user_totp_secret)) {
    230. 

  230. 

  231. 					//create the totp secret
    232. 

  232. 					$base32 = new base2n(5, 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567', FALSE, TRUE, TRUE);
    233. 

  233. 					$user_totp_secret = $base32->encode(generate_password(20,3));
    234. 

  234. 					$this->user_totp_secret = $user_totp_secret;
    235. 

  235. 

  236. 					//add user setting to array for update
    237. 

  237. 					$x = 0;
    238. 

  238. 					$array['users'][$x]['user_uuid'] = $this->user_uuid;
    239. 

  239. 					$array['users'][$x]['domain_uuid'] = $this->domain_uuid;
    240. 

  240. 					$array['users'][$x]['user_totp_secret'] = $this->user_totp_secret;
    241. 

  241. 

  242. 					//add the user_edit permission
    243. 

  243. 					$p = new permissions;
    244. 

  244. 					$p->add("user_edit", "temp");
    245. 

  245. 

  246. 					//save the data
    247. 

  247. 					$database = new database;
    248. 

  248. 					$database->app_name = 'users';
    249. 

  249. 					$database->app_uuid = '112124b3-95c2-5352-7e9d-d14c0b88f207';
    250. 

  250. 					$database->save($array);
    251. 

  251. 

  252. 					//remove the temporary permission
    253. 

  253. 					$p->delete("user_edit", "temp");
    254. 

  254. 

  255. 					//qr code includes
    256. 

  256. 					require_once 'resources/qr_code/QRErrorCorrectLevel.php';
    257. 

  257. 					require_once 'resources/qr_code/QRCode.php';
    258. 

  258. 					require_once 'resources/qr_code/QRCodeImage.php';
    259. 

  259. 

  260. 					//build the otp authentication url
    261. 

  261. 					$otpauth = "otpauth://totp/".$this->username;
    262. 

  262. 					$otpauth .= "?secret=".$this->user_totp_secret;
    263. 

  263. 					$otpauth .= "&issuer=".$_SESSION['domain_name'];
    264. 

  264. 

  265. 					//build the qr code image
    266. 

  266. 					try {
    267. 

  267. 						$code = new QRCode (- 1, QRErrorCorrectLevel::H);
    268. 

  268. 						$code->addData($otpauth);
    269. 

  269. 						$code->make();
    270. 

  270. 						$img = new QRCodeImage ($code, $width=210, $height=210, $quality=50);
    271. 

  271. 						$img->draw();
    272. 

  272. 						$image = $img->getImage();
    273. 

  273. 						$img->finish();
    274. 

  274. 					}
    275. 

  275. 					catch (Exception $error) {
    276. 

  276. 						echo $error;
    277. 

  277. 					}
    278. 

  278. 

  279. 					//assign values to the template
    280. 

  280. 					$view->assign("totp_secret", $this->user_totp_secret);
    281. 

  281. 					$view->assign("totp_image", base64_encode($image));
    282. 

  282. 					$view->assign("totp_description", $text['description-totp']);
    283. 

  283. 					$view->assign("button_next", $text['button-next']);
    284. 

  284. 					$view->assign("favicon", $settings['theme']['favicon']);
    285. 

  285. 					$view->assign("message_delay", $settings['theme']['message_delay']);
    286. 

  286. 

  287. 					//messages
    288. 

  288. 					$view->assign('messages', message::html(true, '		'));
    289. 

  289. 

  290. 					//render the template
    291. 

  291. 					$content = $view->render('totp_secret.htm');
    292. 

  292. 				}
    293. 

  293. 				else {
    294. 

  294. 					//assign values to the template
    295. 

  295. 					$view->assign("button_verify", $text['label-verify']);
    296. 

  296. 					$view->assign("message_delay", $settings['theme']['message_delay']);
    297. 

  297. 

  298. 					//messages
    299. 

  299. 					$view->assign('messages', message::html(true, '		'));
    300. 

  300. 

  301. 					//render the template
    302. 

  302. 					$content = $view->render('totp.htm');
    303. 

  303. 				}
    304. 

  304. 				echo $content;
    305. 

  305. 				exit;
    306. 

  306. 			}
    307. 

  307. 

  308. 		//if authorized then verify
    309. 

  309. 			if (isset($_POST['authentication_code'])) {
    310. 

  310. 

  311. 				//get the user details
    312. 

  312. 				$sql = "select user_uuid, user_email, contact_uuid, user_totp_secret\n";
    313. 

  313. 				$sql .= "from v_users\n";
    314. 

  314. 				$sql .= "where (\n";
    315. 

  315. 				$sql .= "	username = :username\n";
    316. 

  316. 				$sql .= "	or user_email = :username\n";
    317. 

  317. 				$sql .= ")\n";
    318. 

  318. 				if ($settings['users']['unique'] != "global") {
    319. 

  319. 					//unique username per domain (not globally unique across system - example: email address)
    320. 

  320. 					$sql .= "and domain_uuid = :domain_uuid ";
    321. 

  321. 					$parameters['domain_uuid'] = $_SESSION["domain_uuid"];
    322. 

  322. 				}
    323. 

  323. 				$parameters['username'] = $_SESSION["username"];
    324. 

  324. 				$database = new database;
    325. 

  325. 				$row = $database->select($sql, $parameters, 'row');
    326. 

  326. 				$this->user_uuid = $row['user_uuid'];
    327. 

  327. 				$this->user_email = $row['user_email'];
    328. 

  328. 				$this->contact_uuid = $row['contact_uuid'];
    329. 

  329. 				$this->user_totp_secret = $row['user_totp_secret'];
    330. 

  330. 				unset($parameters);
    331. 

  331. 

  332. 				//create the authenticator object
    333. 

  333. 				$totp = new google_authenticator;
    334. 

  334. 

  335. 				//validate the code
    336. 

  336. 				if ($totp->checkCode($this->user_totp_secret, $_POST['authentication_code'])) {
    337. 

  337. 					$auth_valid = true;
    338. 

  338. 				}
    339. 

  339. 				else {
    340. 

  340. 					$auth_valid = false;
    341. 

  341. 				}
    342. 

  342. 

  343. 				//clear posted authentication code
    344. 

  344. 				unset($_POST['authentication_code']);
    345. 

  345. 

  346. 				//get the user details
    347. 

  347. 				if ($auth_valid) {
    348. 

  348. 					//get user data from the database
    349. 

  349. 					$sql = "select user_uuid, username, user_email, contact_uuid ";
    350. 

  350. 					$sql .= "from v_users ";
    351. 

  351. 					$sql .= "where user_uuid = :user_uuid ";
    352. 

  352. 					if ($settings['users']['unique'] != "global") {
    353. 

  353. 						//unique username per domain (not globally unique across system - example: email address)
    354. 

  354. 						$sql .= "and domain_uuid = :domain_uuid ";
    355. 

  355. 						$parameters['domain_uuid'] = $_SESSION["domain_uuid"];
    356. 

  356. 					}
    357. 

  357. 					$parameters['user_uuid'] = $_SESSION["user_uuid"];
    358. 

  358. 					$database = new database;
    359. 

  359. 					$row = $database->select($sql, $parameters, 'row');
    360. 

  360. 					unset($parameters);
    361. 

  361. 				}
    362. 

  362. 				else {
    363. 

  363. // 					//destroy session
    364. 

  364. // 					session_unset();
    365. 

  365. // 					session_destroy();
    366. 

  366. //
    367. 

  367. // 					//send http 403
    368. 

  368. // 					header('HTTP/1.0 403 Forbidden', true, 403);
    369. 

  369. //
    370. 

  370. // 					//redirect to the root of the website
    371. 

  371. // 					header("Location: ".PROJECT_PATH."/");
    372. 

  372. //
    373. 

  373. // 					//exit the code
    374. 

  374. // 					exit();
    375. 

  375. 

  376. 					//clear authentication session
    377. 

  377. 					unset($_SESSION['authentication']);
    378. 

  378. 

  379. 					// clear username
    380. 

  380. 					unset($_SESSION["username"]);
    381. 

  381. 				}
    382. 

  382. 

  383. 				/*
    384. 

  384. 				//check if user successfully logged in during the interval
    385. 

  385. 					//$sql = "select user_log_uuid, timestamp, user_name, user_agent, remote_address ";
    386. 

  386. 					$sql = "select count(*) as count ";
    387. 

  387. 					$sql .= "from v_user_logs ";
    388. 

  388. 					$sql .= "where domain_uuid = :domain_uuid ";
    389. 

  389. 					$sql .= "and user_uuid = :user_uuid ";
    390. 

  390. 					$sql .= "and user_agent = :user_agent ";
    391. 

  391. 					$sql .= "and type = 'login' ";
    392. 

  392. 					$sql .= "and result = 'success' ";
    393. 

  393. 					$sql .= "and floor(extract(epoch from now()) - extract(epoch from timestamp)) > 3 ";
    394. 

  394. 					$sql .= "and floor(extract(epoch from now()) - extract(epoch from timestamp)) < 300 ";
    395. 

  395. 					$parameters['domain_uuid'] = $this->domain_uuid;
    396. 

  396. 					$parameters['user_uuid'] = $this->user_uuid;
    397. 

  397. 					$parameters['user_agent'] = $_SERVER['HTTP_USER_AGENT'];
    398. 

  398. 					$database = new database;
    399. 

  399. 					$user_log_count = $database->select($sql, $parameters, 'all');
    400. 

  400. 					//view_array($user_log_count);
    401. 

  401. 					unset($sql, $parameters);
    402. 

  402. 				*/
    403. 

  403. 

  404. 				//build the result array
    405. 

  405. 				$result["plugin"] = "totp";
    406. 

  406. 				$result["domain_name"] = $_SESSION["domain_name"];
    407. 

  407. 				$result["username"] = $_SESSION["username"] ?? null;
    408. 

  408. 				$result["user_uuid"] = $_SESSION["user_uuid"];
    409. 

  409. 				$result["domain_uuid"] = $_SESSION["domain_uuid"];
    410. 

  410. 				$result["contact_uuid"] = $_SESSION["contact_uuid"];
    411. 

  411. 				$result["authorized"] = $auth_valid ? true : false;
    412. 

  412. 

  413. 				//add the failed login to user logs
    414. 

  414. 				if (!$auth_valid) {
    415. 

  415. 					user_logs::add($result);
    416. 

  416. 				}
    417. 

  417. 

  418. 				//retun the array
    419. 

  419. 				return $result;
    420. 

  420. 

  421. 				//$_SESSION['authentication']['plugin']['totp']['plugin'] = "totp";
    422. 

  422. 				//$_SESSION['authentication']['plugin']['totp']['domain_name'] = $_SESSION["domain_name"];
    423. 

  423. 				//$_SESSION['authentication']['plugin']['totp']['username'] = $row['username'];
    424. 

  424. 				//$_SESSION['authentication']['plugin']['totp']['user_uuid'] = $_SESSION["user_uuid"];
    425. 

  425. 				//$_SESSION['authentication']['plugin']['totp']['contact_uuid'] = $_SESSION["contact_uuid"];
    426. 

  426. 				//$_SESSION['authentication']['plugin']['totp']['domain_uuid'] =  $_SESSION["domain_uuid"];
    427. 

  427. 				//$_SESSION['authentication']['plugin']['totp']['authorized'] = $auth_valid ? true : false;
    428. 

  428. 			}
    429. 

  429. 

  430. 	}
    431. 

  431. }
    432. 

  432. 

  433. ?>
    434.