Class: Rails::Auth::MfaController

Inherits:

ApplicationController

• Object
• ApplicationController
• ApplicationController
• Rails::Auth::MfaController

Defined in:

app/controllers/rails/auth/mfa_controller.rb

Instance Method Summary

• #create ⇒ Object
• #destroy ⇒ Object
• #show ⇒ Object

Instance Method Details

#create ⇒ Object

# File 'app/controllers/rails/auth/mfa_controller.rb', line 9

def create
  if current_user.verify_otp(params[:otp_code])
    current_user.update(otp_enabled: true)
    redirect_to security_sessions_path, notice: "Two-factor authentication enabled."
  else
    flash.now[:alert] = "Invalid OTP code. Please try again."
    @qrcode = RQRCode::QRCode.new(current_user.otp_provisioning_uri)
    render :show, status: :unprocessable_entity
  end
end

#destroy ⇒ Object

# File 'app/controllers/rails/auth/mfa_controller.rb', line 20

def destroy
  current_user.update(otp_enabled: false, otp_secret: nil)
  redirect_to security_sessions_path, notice: "Two-factor authentication disabled."
end

#show ⇒ Object

# File 'app/controllers/rails/auth/mfa_controller.rb', line 4

def show
  current_user.generate_otp_secret! unless current_user.otp_secret
  @qrcode = RQRCode::QRCode.new(current_user.otp_provisioning_uri)
end