2015-12-09 04:35:05 +01:00
|
|
|
angular
|
|
|
|
|
.module('bit.accounts')
|
|
|
|
|
|
2017-01-28 07:19:43 +01:00
|
|
|
.controller('accountsLoginController', function ($scope, $rootScope, $cookies, apiService, cryptoService, authService,
|
2017-06-24 15:19:04 +02:00
|
|
|
$state, constants, $analytics, $uibModal, $timeout, $window, $filter, toastr) {
|
2017-03-31 04:06:01 +02:00
|
|
|
$scope.state = $state;
|
2017-06-23 18:39:56 +02:00
|
|
|
$scope.twoFactorProviderConstants = constants.twoFactorProvider;
|
2017-06-23 22:31:55 +02:00
|
|
|
$scope.rememberTwoFactor = { checked: false };
|
2017-04-25 16:46:54 +02:00
|
|
|
|
2017-07-14 04:28:52 +02:00
|
|
|
$scope.returnState = $state.params.returnState;
|
|
|
|
|
$scope.stateEmail = $state.params.email;
|
|
|
|
|
if (!$scope.returnState && $state.params.org) {
|
|
|
|
|
$scope.returnState = {
|
2017-04-25 16:46:54 +02:00
|
|
|
name: 'backend.user.settingsCreateOrg',
|
|
|
|
|
params: { plan: $state.params.org }
|
|
|
|
|
};
|
|
|
|
|
}
|
2017-07-14 04:28:52 +02:00
|
|
|
else if (!$scope.returnState && $state.params.premium) {
|
|
|
|
|
$scope.returnState = {
|
|
|
|
|
name: 'backend.user.settingsPremium'
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($state.current.name.indexOf('twoFactor') > -1 && (!$scope.twoFactorProviders || !$scope.twoFactorProviders.length)) {
|
|
|
|
|
$state.go('frontend.login.info', { returnState: $scope.returnState });
|
2017-04-25 16:46:54 +02:00
|
|
|
}
|
|
|
|
|
|
2017-04-11 00:55:18 +02:00
|
|
|
var rememberedEmail = $cookies.get(constants.rememberedEmailCookieName);
|
2017-07-14 04:28:52 +02:00
|
|
|
if (rememberedEmail || $scope.stateEmail) {
|
2015-12-09 04:35:05 +01:00
|
|
|
$scope.model = {
|
2017-07-14 04:28:52 +02:00
|
|
|
email: $scope.stateEmail || rememberedEmail,
|
2017-03-29 03:16:44 +02:00
|
|
|
rememberEmail: rememberedEmail !== null
|
2015-12-09 04:35:05 +01:00
|
|
|
};
|
2017-06-24 22:59:01 +02:00
|
|
|
|
|
|
|
|
$timeout(function () {
|
|
|
|
|
$("#masterPassword").focus();
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
$timeout(function () {
|
|
|
|
|
$("#email").focus();
|
|
|
|
|
});
|
2015-12-09 04:35:05 +01:00
|
|
|
}
|
|
|
|
|
|
2017-06-20 23:06:14 +02:00
|
|
|
var _email,
|
|
|
|
|
_masterPassword;
|
|
|
|
|
|
|
|
|
|
$scope.twoFactorProviders = null;
|
|
|
|
|
$scope.twoFactorProvider = null;
|
2017-01-28 07:19:43 +01:00
|
|
|
|
2015-12-09 04:35:05 +01:00
|
|
|
$scope.login = function (model) {
|
2017-06-24 15:19:04 +02:00
|
|
|
$scope.loginPromise = authService.logIn(model.email, model.masterPassword).then(function (twoFactorProviders) {
|
2015-12-09 04:35:05 +01:00
|
|
|
if (model.rememberEmail) {
|
|
|
|
|
var cookieExpiration = new Date();
|
|
|
|
|
cookieExpiration.setFullYear(cookieExpiration.getFullYear() + 10);
|
|
|
|
|
|
|
|
|
|
$cookies.put(
|
2017-04-11 00:55:18 +02:00
|
|
|
constants.rememberedEmailCookieName,
|
2015-12-09 04:35:05 +01:00
|
|
|
model.email,
|
|
|
|
|
{ expires: cookieExpiration });
|
|
|
|
|
}
|
|
|
|
|
else {
|
2017-04-11 00:55:18 +02:00
|
|
|
$cookies.remove(constants.rememberedEmailCookieName);
|
2015-12-09 04:35:05 +01:00
|
|
|
}
|
|
|
|
|
|
2017-06-20 23:06:14 +02:00
|
|
|
if (twoFactorProviders && Object.keys(twoFactorProviders).length > 0) {
|
|
|
|
|
_email = model.email;
|
|
|
|
|
_masterPassword = model.masterPassword;
|
2017-07-24 17:48:19 +02:00
|
|
|
|
|
|
|
|
$scope.twoFactorProviders = cleanProviders(twoFactorProviders);
|
|
|
|
|
$scope.twoFactorProvider = getDefaultProvider($scope.twoFactorProviders);
|
2017-01-28 07:19:43 +01:00
|
|
|
|
2016-08-12 02:43:05 +02:00
|
|
|
$analytics.eventTrack('Logged In To Two-step');
|
2017-07-14 04:28:52 +02:00
|
|
|
$state.go('frontend.login.twoFactor', { returnState: $scope.returnState }).then(function () {
|
2017-06-20 23:06:14 +02:00
|
|
|
$timeout(function () {
|
|
|
|
|
$("#code").focus();
|
2017-06-21 21:17:44 +02:00
|
|
|
init();
|
2017-06-20 23:06:14 +02:00
|
|
|
});
|
|
|
|
|
});
|
2015-12-09 04:35:05 +01:00
|
|
|
}
|
|
|
|
|
else {
|
2016-08-12 02:43:05 +02:00
|
|
|
$analytics.eventTrack('Logged In');
|
2017-03-23 21:57:47 +01:00
|
|
|
loggedInGo();
|
2015-12-09 04:35:05 +01:00
|
|
|
}
|
2017-06-23 22:31:55 +02:00
|
|
|
|
|
|
|
|
model.masterPassword = '';
|
2015-12-09 04:35:05 +01:00
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2017-06-23 22:31:55 +02:00
|
|
|
function getDefaultProvider(twoFactorProviders) {
|
|
|
|
|
var keys = Object.keys(twoFactorProviders);
|
|
|
|
|
var providerType = null;
|
|
|
|
|
var providerPriority = -1;
|
|
|
|
|
for (var i = 0; i < keys.length; i++) {
|
|
|
|
|
var provider = $filter('filter')(constants.twoFactorProviderInfo, { type: keys[i], active: true });
|
|
|
|
|
if (provider.length && provider[0].priority > providerPriority) {
|
2017-06-27 15:04:51 +02:00
|
|
|
if (provider[0].type === constants.twoFactorProvider.u2f && !u2f.isSupported) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-23 22:31:55 +02:00
|
|
|
providerType = provider[0].type;
|
2017-06-26 21:32:34 +02:00
|
|
|
providerPriority = provider[0].priority;
|
2017-06-23 22:31:55 +02:00
|
|
|
}
|
|
|
|
|
}
|
2017-06-27 15:04:51 +02:00
|
|
|
|
|
|
|
|
if (providerType === null) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-23 22:31:55 +02:00
|
|
|
return parseInt(providerType);
|
|
|
|
|
}
|
|
|
|
|
|
2017-07-24 17:48:19 +02:00
|
|
|
function cleanProviders(twoFactorProviders) {
|
|
|
|
|
if (canUseSecurityKey()) {
|
|
|
|
|
return twoFactorProviders;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var keys = Object.keys(twoFactorProviders);
|
|
|
|
|
var cleanedProviders = [];
|
|
|
|
|
for (var i = 0; i < keys.length; i++) {
|
|
|
|
|
var provider = $filter('filter')(constants.twoFactorProviderInfo, {
|
|
|
|
|
type: keys[i],
|
|
|
|
|
active: true,
|
|
|
|
|
requiresUsb: false
|
|
|
|
|
});
|
|
|
|
|
if (provider.length) {
|
|
|
|
|
cleanedProviders.push(twoFactorProviders[keys[i]]);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return cleanedProviders;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ref: https://stackoverflow.com/questions/11381673/detecting-a-mobile-browser
|
|
|
|
|
function canUseSecurityKey() {
|
|
|
|
|
var mobile = false;
|
|
|
|
|
(function (a) {
|
|
|
|
|
if (/(android|bb\d+|meego).+mobile|avantgo|bada\/|blackberry|blazer|compal|elaine|fennec|hiptop|iemobile|ip(hone|od)|iris|kindle|lge |maemo|midp|mmp|mobile.+firefox|netfront|opera m(ob|in)i|palm( os)?|phone|p(ixi|re)\/|plucker|pocket|psp|series(4|6)0|symbian|treo|up\.(browser|link)|vodafone|wap|windows ce|xda|xiino/i.test(a) || /1207|6310|6590|3gso|4thp|50[1-6]i|770s|802s|a wa|abac|ac(er|oo|s\-)|ai(ko|rn)|al(av|ca|co)|amoi|an(ex|ny|yw)|aptu|ar(ch|go)|as(te|us)|attw|au(di|\-m|r |s )|avan|be(ck|ll|nq)|bi(lb|rd)|bl(ac|az)|br(e|v)w|bumb|bw\-(n|u)|c55\/|capi|ccwa|cdm\-|cell|chtm|cldc|cmd\-|co(mp|nd)|craw|da(it|ll|ng)|dbte|dc\-s|devi|dica|dmob|do(c|p)o|ds(12|\-d)|el(49|ai)|em(l2|ul)|er(ic|k0)|esl8|ez([4-7]0|os|wa|ze)|fetc|fly(\-|_)|g1 u|g560|gene|gf\-5|g\-mo|go(\.w|od)|gr(ad|un)|haie|hcit|hd\-(m|p|t)|hei\-|hi(pt|ta)|hp( i|ip)|hs\-c|ht(c(\-| |_|a|g|p|s|t)|tp)|hu(aw|tc)|i\-(20|go|ma)|i230|iac( |\-|\/)|ibro|idea|ig01|ikom|im1k|inno|ipaq|iris|ja(t|v)a|jbro|jemu|jigs|kddi|keji|kgt( |\/)|klon|kpt |kwc\-|kyo(c|k)|le(no|xi)|lg( g|\/(k|l|u)|50|54|\-[a-w])|libw|lynx|m1\-w|m3ga|m50\/|ma(te|ui|xo)|mc(01|21|ca)|m\-cr|me(rc|ri)|mi(o8|oa|ts)|mmef|mo(01|02|bi|de|do|t(\-| |o|v)|zz)|mt(50|p1|v )|mwbp|mywa|n10[0-2]|n20[2-3]|n30(0|2)|n50(0|2|5)|n7(0(0|1)|10)|ne((c|m)\-|on|tf|wf|wg|wt)|nok(6|i)|nzph|o2im|op(ti|wv)|oran|owg1|p800|pan(a|d|t)|pdxg|pg(13|\-([1-8]|c))|phil|pire|pl(ay|uc)|pn\-2|po(ck|rt|se)|prox|psio|pt\-g|qa\-a|qc(07|12|21|32|60|\-[2-7]|i\-)|qtek|r380|r600|raks|rim9|ro(ve|zo)|s55\/|sa(ge|ma|mm|ms|ny|va)|sc(01|h\-|oo|p\-)|sdk\/|se(c(\-|0|1)|47|mc|nd|ri)|sgh\-|shar|sie(\-|m)|sk\-0|sl(45|id)|sm(al|ar|b3|it|t5)|so(ft|ny)|sp(01|h\-|v\-|v )|sy(01|mb)|t2(18|50)|t6(00|10|18)|ta(gt|lk)|tcl\-|tdg\-|tel(i|m)|tim\-|t\-mo|to(pl|sh)|ts(70|m\-|m3|m5)|tx\-9|up(\.b|g1|si)|utst|v400|v750|veri|vi(rg|te)|vk(40|5[0-3]|\-v)|vm40|voda|vulc|vx(52|53|60|61|70|80|81|83|85|98)|w3c(\-| )|webc|whit|wi(g |nc|nw)|wmlb|wonu|x700|yas\-|your|zeto|zte\-/i.test(a.substr(0, 4))) {
|
|
|
|
|
mobile = true;
|
|
|
|
|
}
|
|
|
|
|
})(navigator.userAgent || navigator.vendor || window.opera);
|
|
|
|
|
|
|
|
|
|
return !mobile && !navigator.userAgent.match(/iPad/i);
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-20 23:06:14 +02:00
|
|
|
$scope.twoFactor = function (token) {
|
2017-06-27 14:26:00 +02:00
|
|
|
if ($scope.twoFactorProvider === constants.twoFactorProvider.email ||
|
|
|
|
|
$scope.twoFactorProvider === constants.twoFactorProvider.authenticator) {
|
2017-06-27 14:14:03 +02:00
|
|
|
token = token.replace(' ', '');
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-23 22:31:55 +02:00
|
|
|
$scope.twoFactorPromise = authService.logIn(_email, _masterPassword, token, $scope.twoFactorProvider,
|
|
|
|
|
$scope.rememberTwoFactor.checked || false);
|
2015-12-09 04:35:05 +01:00
|
|
|
|
|
|
|
|
$scope.twoFactorPromise.then(function () {
|
2016-08-12 02:43:05 +02:00
|
|
|
$analytics.eventTrack('Logged In From Two-step');
|
2017-03-23 21:57:47 +01:00
|
|
|
loggedInGo();
|
2017-06-24 22:59:01 +02:00
|
|
|
}, function () {
|
|
|
|
|
if ($scope.twoFactorProvider === constants.twoFactorProvider.u2f) {
|
|
|
|
|
init();
|
|
|
|
|
}
|
2015-12-09 04:35:05 +01:00
|
|
|
});
|
|
|
|
|
};
|
2017-03-23 21:57:47 +01:00
|
|
|
|
2017-06-20 23:06:14 +02:00
|
|
|
$scope.anotherMethod = function () {
|
|
|
|
|
var modal = $uibModal.open({
|
|
|
|
|
animation: true,
|
|
|
|
|
templateUrl: 'app/accounts/views/accountsTwoFactorMethods.html',
|
|
|
|
|
controller: 'accountsTwoFactorMethodsController',
|
|
|
|
|
resolve: {
|
|
|
|
|
providers: function () { return $scope.twoFactorProviders; }
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
modal.result.then(function (provider) {
|
|
|
|
|
$scope.twoFactorProvider = provider;
|
|
|
|
|
$timeout(function () {
|
|
|
|
|
$("#code").focus();
|
2017-06-21 21:17:44 +02:00
|
|
|
init();
|
2017-06-20 23:06:14 +02:00
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2017-06-24 15:19:04 +02:00
|
|
|
$scope.sendEmail = function (doToast) {
|
|
|
|
|
if ($scope.twoFactorProvider !== constants.twoFactorProvider.email) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2017-07-09 05:41:02 +02:00
|
|
|
return cryptoService.makeKeyAndHash(_email, _masterPassword).then(function (result) {
|
|
|
|
|
return apiService.twoFactor.sendEmailLogin({
|
|
|
|
|
email: _email,
|
|
|
|
|
masterPasswordHash: result.hash
|
|
|
|
|
}).$promise;
|
|
|
|
|
}).then(function () {
|
2017-06-24 15:19:04 +02:00
|
|
|
if (doToast) {
|
2017-06-24 17:55:39 +02:00
|
|
|
toastr.success('Verification email sent to ' + $scope.twoFactorEmail + '.');
|
2017-06-24 15:19:04 +02:00
|
|
|
}
|
|
|
|
|
}, function () {
|
|
|
|
|
toastr.error('Could not send verification email.');
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2017-03-23 21:57:47 +01:00
|
|
|
function loggedInGo() {
|
2017-07-14 04:28:52 +02:00
|
|
|
if ($scope.returnState) {
|
|
|
|
|
$state.go($scope.returnState.name, $scope.returnState.params);
|
2017-03-23 21:57:47 +01:00
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
$state.go('backend.user.vault');
|
|
|
|
|
}
|
|
|
|
|
}
|
2017-06-21 21:17:44 +02:00
|
|
|
|
|
|
|
|
function init() {
|
2017-06-27 14:26:00 +02:00
|
|
|
var params;
|
2017-06-21 21:17:44 +02:00
|
|
|
if ($scope.twoFactorProvider === constants.twoFactorProvider.duo) {
|
2017-06-27 14:26:00 +02:00
|
|
|
params = $scope.twoFactorProviders[constants.twoFactorProvider.duo];
|
2017-06-21 21:17:44 +02:00
|
|
|
|
2017-06-23 22:31:55 +02:00
|
|
|
$window.Duo.init({
|
2017-06-21 21:17:44 +02:00
|
|
|
host: params.Host,
|
|
|
|
|
sig_request: params.Signature,
|
|
|
|
|
submit_callback: function (theForm) {
|
|
|
|
|
var response = $(theForm).find('input[name="sig_response"]').val();
|
|
|
|
|
$scope.twoFactor(response);
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
}
|
2017-06-23 05:16:02 +02:00
|
|
|
else if ($scope.twoFactorProvider === constants.twoFactorProvider.u2f) {
|
2017-06-27 14:26:00 +02:00
|
|
|
params = $scope.twoFactorProviders[constants.twoFactorProvider.u2f];
|
2017-06-23 05:16:02 +02:00
|
|
|
var challenges = JSON.parse(params.Challenges);
|
2017-06-23 22:31:55 +02:00
|
|
|
|
|
|
|
|
initU2f(challenges);
|
|
|
|
|
}
|
2017-06-24 15:19:04 +02:00
|
|
|
else if ($scope.twoFactorProvider === constants.twoFactorProvider.email) {
|
2017-06-27 14:26:00 +02:00
|
|
|
params = $scope.twoFactorProviders[constants.twoFactorProvider.email];
|
2017-06-24 17:55:39 +02:00
|
|
|
$scope.twoFactorEmail = params.Email;
|
2017-06-24 15:19:04 +02:00
|
|
|
if (Object.keys($scope.twoFactorProviders).length > 1) {
|
|
|
|
|
$scope.sendEmail(false);
|
|
|
|
|
}
|
|
|
|
|
}
|
2017-06-23 22:31:55 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function initU2f(challenges) {
|
|
|
|
|
if (challenges.length < 1 || $scope.twoFactorProvider !== constants.twoFactorProvider.u2f) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
console.log('listening for u2f key...');
|
|
|
|
|
|
|
|
|
|
$window.u2f.sign(challenges[0].appId, challenges[0].challenge, [{
|
|
|
|
|
version: challenges[0].version,
|
|
|
|
|
keyHandle: challenges[0].keyHandle
|
|
|
|
|
}], function (data) {
|
|
|
|
|
if ($scope.twoFactorProvider !== constants.twoFactorProvider.u2f) {
|
2017-06-23 05:16:02 +02:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-23 22:31:55 +02:00
|
|
|
if (data.errorCode) {
|
|
|
|
|
console.log(data.errorCode);
|
2017-07-24 17:48:19 +02:00
|
|
|
initU2f(challenges);
|
2017-06-23 22:31:55 +02:00
|
|
|
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
$scope.twoFactor(JSON.stringify(data));
|
2017-06-27 14:14:03 +02:00
|
|
|
}, 10);
|
2017-06-21 21:17:44 +02:00
|
|
|
}
|
2015-12-09 04:35:05 +01:00
|
|
|
});
|
