Sha256: 26d1cc2792212721632f6b46d55214cb123966f2a3bd67c22f4c7ed38920d70c
Contents?: true
Size: 1.5 KB
Versions: 15
Compression:
Stored size: 1.5 KB
Contents
# The TwoFactorAuthenticatorDestroyer processor can be used to deactivate a previously activated two-factor authenticator.
#
# This feature is not described in the CAS specification so it's completly optional
# to implement this on the web application side.
class CASino::TwoFactorAuthenticatorDestroyerProcessor < CASino::Processor
include CASino::ProcessorConcern::TicketGrantingTickets
include CASino::ProcessorConcern::TwoFactorAuthenticators
# The method will call one of the following methods on the listener:
# * `#user_not_logged_in`: The user is not logged in and should be redirected to /login.
# * `#two_factor_authenticator_destroyed`: The two-factor authenticator was successfully destroyed.
# * `#invalid_two_factor_authenticator`: The two-factor authenticator is not valid.
#
# @param [Hash] params parameters supplied by user. The processor will look for key :id.
# @param [Hash] cookies cookies delivered by the client
# @param [String] user_agent user-agent delivered by the client
def process(params = nil, cookies = nil, user_agent = nil)
cookies ||= {}
params ||= {}
tgt = find_valid_ticket_granting_ticket(cookies[:tgt], user_agent)
if tgt.nil?
@listener.user_not_logged_in
else
authenticator = tgt.user.two_factor_authenticators.where(id: params[:id]).first
if authenticator
authenticator.destroy
@listener.two_factor_authenticator_destroyed
else
@listener.invalid_two_factor_authenticator
end
end
end
end
Version data entries
15 entries across 15 versions & 1 rubygems