yubico global settings

2025-01-22 21:51:22 +01:00 · 2017-06-14 22:40:33 -04:00 · 2017-06-14 22:40:33 -04:00 · 1fc441b6e8
commit 1fc441b6e8
parent c30efcaef0
4 changed files with 21 additions and 1 deletions
--- a/src/Api/settings.json
+++ b/src/Api/settings.json
@ -34,6 +34,10 @@
    "notificationHub": {
      "connectionString": "SECRET",
      "hubName": "SECRET"
+    },
+    "yubico": {
+      "clientid": "SECRET",
+      "key": "SECRET"
    }
  },
  "IpRateLimitOptions": {
--- a/src/Core/GlobalSettings.cs
+++ b/src/Core/GlobalSettings.cs
@ -14,6 +14,7 @@
        public virtual DataProtectionSettings DataProtection { get; set; } = new DataProtectionSettings();
        public virtual DocumentDbSettings DocumentDb { get; set; } = new DocumentDbSettings();
        public virtual NotificationHubSettings NotificationHub { get; set; } = new NotificationHubSettings();
+        public virtual YubicoSettings Yubico { get; set; } = new YubicoSettings();

        public class SqlServerSettings
        {
@ -71,5 +72,11 @@
            public string ConnectionString { get; set; }
            public string HubName { get; set; }
        }
+
+        public class YubicoSettings
+        {
+            public string ClientId { get; set; }
+            public string Key { get; set; }
+        }
    }
 }
--- a/src/Core/Identity/YubicoOtpTokenProvider.cs
+++ b/src/Core/Identity/YubicoOtpTokenProvider.cs
@ -9,6 +9,13 @@ namespace Bit.Core.Identity
 {
    public class YubicoOtpTokenProvider : IUserTwoFactorTokenProvider<User>
    {
+        private readonly GlobalSettings _globalSettings;
+
+        public YubicoOtpTokenProvider(GlobalSettings globalSettings)
+        {
+            _globalSettings = globalSettings;
+        }
+
        public Task<bool> CanGenerateTwoFactorTokenAsync(UserManager<User> manager, User user)
        {
            var provider = user.GetTwoFactorProvider(TwoFactorProviderType.YubiKey);
@ -41,7 +48,7 @@ namespace Bit.Core.Identity
                return Task.FromResult(false);
            }

-            var client = new YubicoClient("TODO", "TODO");
+            var client = new YubicoClient(_globalSettings.Yubico.ClientId, _globalSettings.Yubico.ClientId);
            var response = client.Verify(token);
            return Task.FromResult(response.Status == YubicoResponseStatus.Ok);
        }
--- a/src/Core/Utilities/ServiceCollectionExtensions.cs
+++ b/src/Core/Utilities/ServiceCollectionExtensions.cs
@ -96,6 +96,8 @@ namespace Bit.Core.Utilities
                .AddUserStore<UserStore>()
                .AddRoleStore<RoleStore>()
                .AddTokenProvider<AuthenticatorTokenProvider>(TwoFactorProviderType.Authenticator.ToString())
+                .AddTokenProvider<YubicoOtpTokenProvider>(TwoFactorProviderType.YubiKey.ToString())
+                .AddTokenProvider<DuoTokenProvider>(TwoFactorProviderType.Duo.ToString())
                .AddTokenProvider<EmailTokenProvider<User>>(TokenOptions.DefaultEmailProvider);

            return identityBuilder;