summaryrefslogtreecommitdiff
path: root/src/server/api/endpoints/i/2fa/done.ts
diff options
context:
space:
mode:
Diffstat (limited to 'src/server/api/endpoints/i/2fa/done.ts')
-rw-r--r--src/server/api/endpoints/i/2fa/done.ts23
1 files changed, 11 insertions, 12 deletions
diff --git a/src/server/api/endpoints/i/2fa/done.ts b/src/server/api/endpoints/i/2fa/done.ts
index 556354c386..e23678dcbb 100644
--- a/src/server/api/endpoints/i/2fa/done.ts
+++ b/src/server/api/endpoints/i/2fa/done.ts
@@ -1,7 +1,8 @@
import $ from 'cafy';
import * as speakeasy from 'speakeasy';
-import User from '../../../../../models/user';
import define from '../../../define';
+import { UserProfiles } from '../../../../../models';
+import { ensure } from '../../../../../prelude/ensure';
export const meta = {
requireCredential: true,
@@ -16,28 +17,26 @@ export const meta = {
};
export default define(meta, async (ps, user) => {
- const _token = ps.token.replace(/\s/g, '');
+ const token = ps.token.replace(/\s/g, '');
- if (user.twoFactorTempSecret == null) {
+ const profile = await UserProfiles.findOne({ userId: user.id }).then(ensure);
+
+ if (profile.twoFactorTempSecret == null) {
throw new Error('二段階認証の設定が開始されていません');
}
const verified = (speakeasy as any).totp.verify({
- secret: user.twoFactorTempSecret,
+ secret: profile.twoFactorTempSecret,
encoding: 'base32',
- token: _token
+ token: token
});
if (!verified) {
throw new Error('not verified');
}
- await User.update(user._id, {
- $set: {
- 'twoFactorSecret': user.twoFactorTempSecret,
- 'twoFactorEnabled': true
- }
+ await UserProfiles.update({ userId: user.id }, {
+ twoFactorSecret: profile.twoFactorTempSecret,
+ twoFactorEnabled: true
});
-
- return;
});
generated by cgit v1.2.3-freya (git 2.53.0.84.g453e7b744a) at 2026-04-19 08:16:20 +0000