kenmirrors/firefly-iii
1
0
Fork 0
mirror of https://github.com/firefly-iii/firefly-iii.git synced 2025-10-12 15:35:15 +00:00
Code Issues Projects Releases Wiki Activity

Do not give the user the secret.

Browse Source
This commit is contained in:
James Cole
2016-03-19 07:56:57 +01:00
parent a26acf4a25
commit fb165ef28b
4 changed files with 9 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/Validation/FireflyValidator.php
View File

@@ -18,8 +18,8 @@ use FireflyIII\Rules\Triggers\TriggerInterface;
use FireflyIII\User;
use Illuminate\Contracts\Encryption\DecryptException;
use Illuminate\Validation\Validator;
use Input;
use Log;
use Session;
use Symfony\Component\Translation\TranslatorInterface;
/**
@@ -59,9 +59,7 @@ class FireflyValidator extends Validator
return false;
}
// Retrieve the secret from our hidden form field.
$secret = Input::get($parameters[0]);
$secret = Session::get('two-factor-secret');
$google2fa = app('PragmaRX\Google2FA\Google2FA');
return $google2fa->verifyKey($secret, $value);