I know it's bad form to submit a large PR like this but this fixes almost everything in https://github.com/firefly-iii/firefly-iii/issues/9183 and I was too lazy to create a branch for it.

2025-10-12 15:35:15 +00:00 · 2024-10-08 07:21:23 +02:00
parent 5597327448
commit 1e472ee095
38 changed files with 2261 additions and 548 deletions
--- a/routes/breadcrumbs.php
+++ b/routes/breadcrumbs.php
@@ -687,13 +687,7 @@ Breadcrumbs::for(
    }
 );

-Breadcrumbs::for(
-    'profile.code',
-    static function (Generator $breadcrumbs): void {
-        $breadcrumbs->parent('home');
-        $breadcrumbs->push(trans('breadcrumbs.profile'), route('profile.index'));
-    }
-);
+

 Breadcrumbs::for(
    'profile.new-backup-codes',
@@ -711,6 +705,47 @@ Breadcrumbs::for(
    }
 );

+// Profile MFA
+Breadcrumbs::for(
+    'profile.mfa.index',
+    static function (Generator $breadcrumbs): void {
+        $breadcrumbs->parent('profile.index');
+        $breadcrumbs->push(trans('breadcrumbs.profile_mfa'), route('profile.mfa.index'));
+    }
+);
+Breadcrumbs::for(
+    'profile.mfa.enableMFA',
+    static function (Generator $breadcrumbs): void {
+        $breadcrumbs->parent('profile.mfa.index');
+        $breadcrumbs->push(trans('breadcrumbs.mfa_enableMFA'), route('profile.mfa.enableMFA'));
+    }
+);
+
+Breadcrumbs::for(
+    'profile.mfa.disableMFA',
+    static function (Generator $breadcrumbs): void {
+        $breadcrumbs->parent('profile.mfa.index');
+        $breadcrumbs->push(trans('breadcrumbs.mfa_disableMFA'), route('profile.mfa.disableMFA'));
+    }
+);
+
+Breadcrumbs::for(
+    'profile.mfa.backup-codes',
+    static function (Generator $breadcrumbs): void {
+        $breadcrumbs->parent('profile.mfa.index');
+        $breadcrumbs->push(trans('breadcrumbs.mfa_backup_codes'), route('profile.mfa.backup-codes'));
+    }
+);
+Breadcrumbs::for(
+    'profile.mfa.backup-codes.post',
+    static function (Generator $breadcrumbs): void {
+        $breadcrumbs->parent('profile.mfa.index');
+        $breadcrumbs->push(trans('breadcrumbs.mfa_backup_codes'), route('profile.mfa.backup-codes'));
+    }
+);
+
+
+
 // PROFILE
 Breadcrumbs::for(
    'profile.index',
--- a/routes/web.php
+++ b/routes/web.php
@@ -825,15 +825,35 @@ Route::group(
        Route::get('logout-others', ['uses' => 'ProfileController@logoutOtherSessions', 'as' => 'logout-others']);
        Route::post('logout-others', ['uses' => 'ProfileController@postLogoutOtherSessions', 'as' => 'logout-others.post']);

-        // new 2FA routes
-        Route::post('enable2FA', ['uses' => 'ProfileController@enable2FA', 'as' => 'enable2FA']);
-        Route::get('2fa/code', ['uses' => 'ProfileController@code', 'as' => 'code']);
-        Route::post('2fa/code', ['uses' => 'ProfileController@postCode', 'as' => 'code.store']);
-        Route::post('/delete-code', ['uses' => 'ProfileController@deleteCode', 'as' => 'delete-code']);
-        Route::post('2fa/new-codes', ['uses' => 'ProfileController@newBackupCodes', 'as' => 'new-backup-codes']);
+
    }
 );

+// MFA controller
+Route::group(
+    ['middleware' => 'user-full-auth', 'namespace' => 'FireflyIII\Http\Controllers', 'prefix' => 'mfa', 'as' => 'profile.mfa.'],
+    static function (): void {
+        Route::get('index', ['uses' => 'Profile\MfaController@index', 'as' => 'index']);
+
+        // enable MFA (goes to code page)
+        Route::get('enableMFA',  ['uses' => 'Profile\MfaController@enableMFA', 'as' => 'enableMFA']);
+        Route::post('enableMFA', ['uses' => 'Profile\MfaController@enableMFAPost', 'as' => 'enableMFA.post']);
+
+        // show backup codes
+        Route::get('backup-codes',  ['uses' => 'Profile\MfaController@backupCodes', 'as' => 'backup-codes']);
+        Route::post('backup-codes', ['uses' => 'Profile\MfaController@backupCodesPost', 'as' => 'backup-codes.post']);
+
+        // enable MFA
+//        Route::get('2fa/code', ['uses' => 'Profile\MfaController@code', 'as' => 'code']);
+
+        // disable MFA
+        Route::get('/disableMFA', ['uses' => 'Profile\MfaController@disableMFA', 'as' => 'disableMFA']);
+        Route::post('/disableMFA', ['uses' => 'Profile\MfaController@disableMFAPost', 'as' => 'disableMFA.post']);
+
+
+
+    }
+    );
 // Recurring Transactions Controller.
 Route::group(
    ['middleware' => 'user-full-auth', 'namespace' => 'FireflyIII\Http\Controllers', 'prefix' => 'recurring', 'as' => 'recurring.'],