Fix use of original Laravel Model and namespaces

asbiin · asbiin · commit 971ee92c3d9c · 2018-06-18T21:33:29.000+02:00
diff --git a/README.md b/README.md
@@ -92,6 +92,7 @@ If you discover any security related issues, please email lahaxe[dot]arnaud[at]g
 - [Mike Robinson](https://github.com/multiwebinc)
 - [Chakphanu Komasathit](https://github.com/chakphanu)
 - [Anne Jan Brouwer](https://github.com/annejan)
+- [Alexis Saettler](https://github.com/asbiin)
 
 ## License
 
diff --git a/src/Models/U2fKey.php b/src/Models/U2fKey.php
@@ -30,6 +30,7 @@ class U2fKey extends Model
      */
     public function user()
     {
-        return $this->belongsTo('\App\User');
+        $model = config('auth.providers.users.model');
+        return $this->belongsTo($model);
     }
 }
diff --git a/src/U2f.php b/src/U2f.php
@@ -1,10 +1,10 @@
 <?php namespace Lahaxearnaud\U2f;
 
-use App\User;
 use Lahaxearnaud\U2f\Models\U2fKey;
+use Illuminate\Support\Facades\Request;
 use Illuminate\Config\Repository as Config;
 use Illuminate\Session\SessionManager as Session;
-
+use Illuminate\Contracts\Auth\Authenticatable as User;
 
 /**
  * Class LaravelU2f
@@ -36,29 +36,28 @@ class U2f {
      */
     public function __construct(Config $config, Session $session)
     {
-        $scheme = \Request::isSecure() ? "https://" : "http://";
-        $this->u2f = new \u2flib_server\U2F($scheme . \Request::getHttpHost());
+        $scheme = Request::isSecure() ? "https://" : "http://";
+        $this->u2f = new \u2flib_server\U2F($scheme . Request::getHttpHost());
         $this->config = $config;
         $this->session = $session;
     }
 
     /**
      * @author LAHAXE Arnaud
      *
-     * @param \App\User $user
+     * @param User $user
      *
      * @return mixed
      */
     public function getRegisterData(User $user)
     {
-
-        return $this->u2f->getRegisterData(U2fKey::where('user_id', $user->id)->get()->all());
+        return $this->u2f->getRegisterData(U2fKey::where('user_id', $user->getAuthIdentifier())->get()->all());
     }
 
     /**
      * @author LAHAXE Arnaud
      *
-     * @param \App\User $user
+     * @param User $user
      * @param           $registerData
      * @param           $keyData
      *
@@ -67,28 +66,28 @@ public function getRegisterData(User $user)
     public function doRegister(User $user, $registerData, $keyData)
     {
         $reg = $this->u2f->doRegister($registerData, $keyData);
-        $reg->user_id = $user->id;
+        $reg->user_id = $user->getAuthIdentifier();
 
         return U2fKey::create((array) $reg);
     }
 
     /**
      * @author LAHAXE Arnaud
      *
-     * @param \App\User $user
+     * @param User $user
      *
      * @return mixed
      */
     public function getAuthenticateData(User $user)
     {
 
-        return $this->u2f->getAuthenticateData(U2fKey::where('user_id', $user->id)->get()->all());
+        return $this->u2f->getAuthenticateData(U2fKey::where('user_id', $user->getAuthIdentifier())->get()->all());
     }
 
     /**
      * @author LAHAXE Arnaud
      *
-     * @param \App\User $user
+     * @param User $user
      * @param           $authData
      * @param           $keyData
      *
@@ -99,12 +98,12 @@ public function doAuthenticate(User $user, $authData, $keyData)
 
         $reg = $this->u2f->doAuthenticate(
             $authData,
-            U2fKey::where('user_id', $user->id)->get()->all(),
+            U2fKey::where('user_id', $user->getAuthIdentifier())->get()->all(),
             $keyData
         );
 
         $U2fKey = U2fKey::where([
-            'user_id' => $user->id,
+            'user_id' => $user->getAuthIdentifier(),
             'publicKey' => $reg->publicKey
         ])->first();
 
diff --git a/src/http/Controllers/U2fController.php b/src/http/Controllers/U2fController.php
@@ -1,14 +1,13 @@
 <?php namespace Lahaxearnaud\U2f\Http\Controllers;
 
-use App\Event;
+use Illuminate\Http\Request;
 use App\Http\Controllers\Controller;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Event;
 use Lahaxearnaud\U2f\U2f as LaravelU2f;
+use Illuminate\Support\Facades\Redirect;
 use Illuminate\Config\Repository as Config;
 
-use Illuminate\Http\Request;
-
-
-
 class U2fController extends Controller
 {
 
@@ -41,8 +40,8 @@ public function __construct(LaravelU2f $u2f, Config $config)
      */
     public function registerData()
     {
-        list($req, $sigs) = $this->u2f->getRegisterData(\Auth::user());
-        \Event::fire('u2f.register.data', [ 'user' => \Auth::user() ]);
+        list($req, $sigs) = $this->u2f->getRegisterData(Auth::user());
+        Event::fire('u2f.register.data', [ 'user' => Auth::user() ]);
 
         session(['u2f.registerData' => $req]);
 
@@ -61,22 +60,22 @@ public function registerData()
     public function register(Request $request)
     {
         try {
-            $key = $this->u2f->doRegister(\Auth::user(), session('u2f.registerData'), json_decode($request->get('register')));
-            \Event::fire('u2f.register', [ 'u2fKey' => $key, 'user' => \Auth::user() ]);
+            $key = $this->u2f->doRegister(Auth::user(), session('u2f.registerData'), json_decode($request->get('register')));
+            Event::fire('u2f.register', [ 'u2fKey' => $key, 'user' => Auth::user() ]);
             session()->forget('u2f.registerData');
             
             session([$this->config->get('u2f.sessionU2fName') => true]);
 
             if ($this->config->get('u2f.register.postSuccessRedirectRoute')) {
 
-                return \Redirect::route($this->config->get('u2f.register.postSuccessRedirectRoute'));
+                return Redirect::route($this->config->get('u2f.register.postSuccessRedirectRoute'));
             } else {
                 return redirect('/');
             }
 
         } catch (\Exception $e) {
 
-            return \Redirect::route('u2f.register.data');
+            return Redirect::route('u2f.register.data');
         }
     }
 
@@ -93,8 +92,8 @@ public function authData()
             return $this->redirectAfterSuccessAuth();
         }
 
-        $req = $this->u2f->getAuthenticateData(\Auth::user());
-        \Event::fire('u2f.authentication.data', [ 'user' => \Auth::user() ]);
+        $req = $this->u2f->getAuthenticateData(Auth::user());
+        Event::fire('u2f.authentication.data', [ 'user' => Auth::user() ]);
 
         session(['u2f.authenticationData' => $req]);
 
@@ -112,16 +111,16 @@ public function auth(Request $request)
     {
 
         try {
-            $key = $this->u2f->doAuthenticate(\Auth::user(), session('u2f.authenticationData'), json_decode($request->get('authentication')));
-            \Event::fire('u2f.authentication', [ 'u2fKey' => $key, 'user' => \Auth::user() ]);
+            $key = $this->u2f->doAuthenticate(Auth::user(), session('u2f.authenticationData'), json_decode($request->get('authentication')));
+            Event::fire('u2f.authentication', [ 'u2fKey' => $key, 'user' => Auth::user() ]);
             session()->forget('u2f.authenticationData');
 
             return $this->redirectAfterSuccessAuth();
 
         } catch (\Exception $e) {
             session()->flash('error', $e->getMessage());
 
-            return \Redirect::route('u2f.auth.data');
+            return Redirect::route('u2f.auth.data');
         }
     }
 
@@ -130,9 +129,9 @@ protected function redirectAfterSuccessAuth()
 
         if (strlen($this->config->get('u2f.authenticate.postSuccessRedirectRoute'))) {
 
-            return \Redirect::intended($this->config->get('u2f.authenticate.postSuccessRedirectRoute'));
+            return Redirect::intended($this->config->get('u2f.authenticate.postSuccessRedirectRoute'));
         } else {
-            return \Redirect::intended('/');
+            return Redirect::intended('/');
         }
     }
 }
diff --git a/src/http/Middleware/U2f.php b/src/http/Middleware/U2f.php
@@ -1,6 +1,7 @@
 <?php namespace Lahaxearnaud\U2f\Http\Middleware;
 
 use Closure;
+use Illuminate\Support\Facades\Auth;
 use Lahaxearnaud\U2f\U2f as LaravelU2f;
 use Lahaxearnaud\U2f\Models\U2fKey;
 use Symfony\Component\HttpKernel\Exception\HttpException;
@@ -48,9 +49,9 @@ public function handle($request, Closure $next)
         }
 
         if (!$this->u2f->check()) {
-            if(!\Auth::guest()){
+            if(!Auth::guest()){
                 if(
-                    U2fKey::where('user_id', '=', \Auth::user()->id)->count()  === 0
+                    U2fKey::where('user_id', '=', Auth::user()->getAuthIdentifier())->count()  === 0
                     && $this->config->get('u2f.byPassUserWithoutKey')
                 ) {
                     return $next($request);

Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,7 @@ class U2fKey extends Model`
`30`	`30`	`*/`
`31`	`31`	`public function user()`
`32`	`32`	`{`
`33`		`- return $this->belongsTo('\App\User');`
	`33`	`+ $model = config('auth.providers.users.model');`
	`34`	`+ return $this->belongsTo($model);`
`34`	`35`	`}`
`35`	`36`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,10 +1,10 @@`
`1`	`1`	`<?php namespace Lahaxearnaud\U2f;`
`2`	`2`
`3`		`-use App\User;`
`4`	`3`	`use Lahaxearnaud\U2f\Models\U2fKey;`
	`4`	`+use Illuminate\Support\Facades\Request;`
`5`	`5`	`use Illuminate\Config\Repository as Config;`
`6`	`6`	`use Illuminate\Session\SessionManager as Session;`
`7`		`-`
	`7`	`+use Illuminate\Contracts\Auth\Authenticatable as User;`
`8`	`8`
`9`	`9`	`/**`
`10`	`10`	`* Class LaravelU2f`
`@@ -36,29 +36,28 @@ class U2f {`
`36`	`36`	`*/`
`37`	`37`	`public function __construct(Config $config, Session $session)`
`38`	`38`	`{`
`39`		`- $scheme = \Request::isSecure() ? "https://" : "http://";`
`40`		`- $this->u2f = new \u2flib_server\U2F($scheme . \Request::getHttpHost());`
	`39`	`+ $scheme = Request::isSecure() ? "https://" : "http://";`
	`40`	`+ $this->u2f = new \u2flib_server\U2F($scheme . Request::getHttpHost());`
`41`	`41`	`$this->config = $config;`
`42`	`42`	`$this->session = $session;`
`43`	`43`	`}`
`44`	`44`
`45`	`45`	`/**`
`46`	`46`	`* @author LAHAXE Arnaud`
`47`	`47`	`*`
`48`		`- * @param \App\User $user`
	`48`	`+ * @param User $user`
`49`	`49`	`*`
`50`	`50`	`* @return mixed`
`51`	`51`	`*/`
`52`	`52`	`public function getRegisterData(User $user)`
`53`	`53`	`{`
`54`		`-`
`55`		`- return $this->u2f->getRegisterData(U2fKey::where('user_id', $user->id)->get()->all());`
	`54`	`+ return $this->u2f->getRegisterData(U2fKey::where('user_id', $user->getAuthIdentifier())->get()->all());`
`56`	`55`	`}`
`57`	`56`
`58`	`57`	`/**`
`59`	`58`	`* @author LAHAXE Arnaud`
`60`	`59`	`*`
`61`		`- * @param \App\User $user`
	`60`	`+ * @param User $user`
`62`	`61`	`* @param $registerData`
`63`	`62`	`* @param $keyData`
`64`	`63`	`*`
`@@ -67,28 +66,28 @@ public function getRegisterData(User $user)`
`67`	`66`	`public function doRegister(User $user, $registerData, $keyData)`
`68`	`67`	`{`
`69`	`68`	`$reg = $this->u2f->doRegister($registerData, $keyData);`
`70`		`- $reg->user_id = $user->id;`
	`69`	`+ $reg->user_id = $user->getAuthIdentifier();`
`71`	`70`
`72`	`71`	`return U2fKey::create((array) $reg);`
`73`	`72`	`}`
`74`	`73`
`75`	`74`	`/**`
`76`	`75`	`* @author LAHAXE Arnaud`
`77`	`76`	`*`
`78`		`- * @param \App\User $user`
	`77`	`+ * @param User $user`
`79`	`78`	`*`
`80`	`79`	`* @return mixed`
`81`	`80`	`*/`
`82`	`81`	`public function getAuthenticateData(User $user)`
`83`	`82`	`{`
`84`	`83`
`85`		`- return $this->u2f->getAuthenticateData(U2fKey::where('user_id', $user->id)->get()->all());`
	`84`	`+ return $this->u2f->getAuthenticateData(U2fKey::where('user_id', $user->getAuthIdentifier())->get()->all());`
`86`	`85`	`}`
`87`	`86`
`88`	`87`	`/**`
`89`	`88`	`* @author LAHAXE Arnaud`
`90`	`89`	`*`
`91`		`- * @param \App\User $user`
	`90`	`+ * @param User $user`
`92`	`91`	`* @param $authData`
`93`	`92`	`* @param $keyData`
`94`	`93`	`*`
`@@ -99,12 +98,12 @@ public function doAuthenticate(User $user, $authData, $keyData)`
`99`	`98`
`100`	`99`	`$reg = $this->u2f->doAuthenticate(`
`101`	`100`	`$authData,`
`102`		`- U2fKey::where('user_id', $user->id)->get()->all(),`
	`101`	`+ U2fKey::where('user_id', $user->getAuthIdentifier())->get()->all(),`
`103`	`102`	`$keyData`
`104`	`103`	`);`
`105`	`104`
`106`	`105`	`$U2fKey = U2fKey::where([`
`107`		`- 'user_id' => $user->id,`
	`106`	`+ 'user_id' => $user->getAuthIdentifier(),`
`108`	`107`	`'publicKey' => $reg->publicKey`
`109`	`108`	`])->first();`
`110`	`109`