Changeset 6759 for sites/trunk/wordpress.org/public_html/wp-content/plugins/wporg-two-factor/providers/class-wporg-two-factor-slack.php

Timestamp:

02/26/2018 07:06:12 AM (8 years ago)

Author:

dd32

Message:

2FA: Enable Email, Slack, and Backup Codes as the backup 2FA method.

See #77.

File:

• sites/trunk/wordpress.org/public_html/wp-content/plugins/wporg-two-factor/providers/class-wporg-two-factor-slack.php (modified) (3 diffs)

sites/trunk/wordpress.org/public_html/wp-content/plugins/wporg-two-factor/providers/class-wporg-two-factor-slack.php

@@ -1 +1 @@
 <?php
 
-require_once TWO_FACTOR_DIR . 'providers/class.two-factor-email.php';
+require_once __DIR__ . '/class-wporg-two-factor-email.php';
 
-class WPORG_Two_Factor_Slack extends Two_Factor_Email {
+class WPORG_Two_Factor_Slack extends WPORG_Two_Factor_Email {
 
     /**
@@ -11 +11 @@
      */
     const TOKEN_META_KEY = '_two_factor_slack_token';
-
-    /**
-     * Name of the input field used for code resend.
-     *
-     * @var string
-     */
-    const INPUT_NAME_RESEND_CODE = 'two-factor-slack-code-resend';
 
     /**
@@ -34 +27 @@
 
     public function get_label() {
-        return _x( 'Slack', 'Provider Label', 'wporg' );
+        return 'Slack'; // Not marked for translation as this shouldn't be called/displayed.
     }
 
-    /**
-     * Whether this Two Factor provider is configured and available for the user specified.
-     *
-     * @since 0.1-dev
-     *
-     * @param WP_User $user WP_User object of the logged-in user.
-     * @return boolean
-     */
+    protected function get_slack_details( $user_id ) {
+        global $wpdb;
+
+        static $cached_details = [];
+        if ( isset( $cached_details[ $user_id ] ) ) {
+            return $cached_details[ $user_id ];
+        }
+
+        // TODO abstract this? memcache it?
+        $user_details = $wpdb->get_var( $wpdb->prepare( "SELECT profiledata FROM slack_users WHERE user_id = %d LIMIT 1", $user_id ) );
+        $user_details = $user_details ? json_decode( $user_details ) : false;
+
+        $cached_details[ $user_id ] = $user_details;
+
+        return $user_details;
+    }
+
     public function is_available_for_user( $user ) {
-        // TODO Check if the user has a 2FA slack account.
+        $user_details = $this->get_slack_details( $user->ID );
+
+        // Require the Slack account to exist, and for the user to have 2FA enabled on Slack.
+        return $user_detauls && empty( $user_details->deleted ) && ! empty( $user_details->has_2fa );
+    }
+
+    public function generate_and_email_token( $user ) {
+        return $this->generate_and_slack_token( $user );
+    }
+
+    public function generate_and_slack_token( $user ) {
+        $token = $this->generate_token( $user->ID );
+
+        $message = "Please enter the following verification code on WordPress.org to complete your login:\n{$token}";
+
+        $slack_details = $this->get_slack_details( $user->ID );
+
+        if ( $slack_details->id ) {
+            // TODO: Replace this with a named Slack Bot.
+            return slack_dm( $message, $slack_details->id );
+        }
+
         return false;
     }
 
-    /**
-     * Generate and email the user token.
-     *
-     * @since 0.1-dev
-     *
-     * @param WP_User $user WP_User object of the logged-in user.
-     */
-    public function generate_and_email_token( $user ) {
-        $token = $this->generate_token( $user->ID );
-
-        /* translators: %s: site name */
-        $subject = wp_strip_all_tags( sprintf( __( 'Your login confirmation code for %s', 'wporg' ), get_bloginfo( 'name' ) ) );
-        /* translators: %s: token */
-        $message = wp_strip_all_tags( sprintf( __( 'Enter %s to log in.', 'wporg' ), $token ) );
-
-        $who = '@dd32';
-
-        return slack_dm( $subject . "\n" . $message, $who );
-    }
-
 }