commit adc443ea80be98a5aaf260eb8c2c7be6e43f6377
parent 0d32179d07de6533bf03871d4d102f5ff5c0e60a
Author: Daniel GarcĂa <dani-garcia@users.noreply.github.com>
Date: Sun, 1 Dec 2019 21:41:46 +0100
Add endpoint to delete specific U2F key
Diffstat:
1 file changed, 45 insertions(+), 0 deletions(-)
diff --git a/src/api/core/two_factor/u2f.rs b/src/api/core/two_factor/u2f.rs
@@ -29,6 +29,7 @@ pub fn routes() -> Vec<Route> {
generate_u2f_challenge,
activate_u2f,
activate_u2f_put,
+ delete_u2f,
]
}
@@ -194,6 +195,50 @@ fn activate_u2f_put(data: JsonUpcase<EnableU2FData>, headers: Headers, conn: DbC
activate_u2f(data, headers, conn)
}
+#[derive(Deserialize, Debug)]
+#[allow(non_snake_case)]
+struct DeleteU2FData {
+ Id: NumberOrString,
+ MasterPasswordHash: String,
+}
+
+#[delete("/two-factor/u2f", data = "<data>")]
+fn delete_u2f(data: JsonUpcase<DeleteU2FData>, headers: Headers, conn: DbConn) -> JsonResult {
+ let data: DeleteU2FData = data.into_inner().data;
+
+ let id = data.Id.into_i32()?;
+
+ if !headers.user.check_valid_password(&data.MasterPasswordHash) {
+ err!("Invalid password");
+ }
+
+ let type_ = TwoFactorType::U2f as i32;
+ let mut tf = match TwoFactor::find_by_user_and_type(&headers.user.uuid, type_, &conn) {
+ Some(tf) => tf,
+ None => err!("U2F data not found!"),
+ };
+
+ let mut data: Vec<U2FRegistration> = match serde_json::from_str(&tf.data) {
+ Ok(d) => d,
+ Err(_) => err!("Error parsing U2F data"),
+ };
+
+ data.retain(|r| r.id != id);
+
+ let new_data_str = serde_json::to_string(&data)?;
+
+ tf.data = new_data_str;
+ tf.save(&conn)?;
+
+ let keys_json: Vec<Value> = data.iter().map(U2FRegistration::to_json).collect();
+
+ Ok(Json(json!({
+ "Enabled": true,
+ "Keys": keys_json,
+ "Object": "twoFactorU2f"
+ })))
+}
+
fn _create_u2f_challenge(user_uuid: &str, type_: TwoFactorType, conn: &DbConn) -> Challenge {
let challenge = U2F.generate_challenge().unwrap();
