fixed GetTOTP, started rough QR code implementation

GetTOTP handles TOTP method retrieval for confirmation and deletion. QR code implementation looks like it's gonna suck, so might end up using a library for this later.
2025-01-26 00:48:19 +00:00 · 2025-01-26 00:48:19 +00:00 · 1edc051ae2
commit 1edc051ae2
parent ad39e68cd6
5 changed files with 132 additions and 13 deletions
--- a/admin/accounthttp.go
+++ b/admin/accounthttp.go
@ -304,6 +304,12 @@ func totpConfirmHandler(app *model.AppState) http.Handler {
            return
        }

+        fmt.Printf(
+            "TOTP:\n\tName: %s\n\tSecret: %s\n",
+            totp.Name,
+            totp.Secret,
+        )
+
        confirmCode := controller.GenerateTOTP(totp.Secret, 0)
        if code != confirmCode {
            confirmCodeOffset := controller.GenerateTOTP(totp.Secret, 1)
@ -330,12 +336,11 @@ func totpDeleteHandler(app *model.AppState) http.Handler {
            return
        }

-        name := r.URL.Path
-        fmt.Printf("%s\n", name);
-        if len(name) == 0 {
+        if len(r.URL.Path) < 2 {
            http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)
            return
        }
+        name := r.URL.Path[1:]

        session := r.Context().Value("session").(*model.Session)

--- a/admin/http.go
+++ b/admin/http.go
@ -19,6 +19,17 @@ import (
 func Handler(app *model.AppState) http.Handler {
    mux := http.NewServeMux()

+    mux.Handle("/qr-test", http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+        qrB64Img, err := controller.GenerateQRCode([]byte("super epic mega gaming test message. be sure to buy free2play on bandcamp so i can put food on my family"))
+        if err != nil {
+            fmt.Fprintf(os.Stderr, "WARN: Failed to generate QR code: %v\n", err)
+            http.Error(w, http.StatusText(http.StatusInternalServerError), http.StatusInternalServerError)
+            return
+        }
+
+        w.Write([]byte("<html><img style=\"image-rendering:pixelated;width:100%;height:100%;object-fit:contain\" src=\"" + qrB64Img + "\"/></html>"))
+    }))
+
    mux.Handle("/login", loginHandler(app))
    mux.Handle("/logout", requireAccount(app, logoutHandler(app)))

@ -243,11 +254,6 @@ func loginHandler(app *model.AppState) http.Handler {
            return
        }

-        // new accounts won't have TOTP methods at first. there should be a
-        // second phase of login that prompts the user for a TOTP *only*
-        // if that account has a TOTP method.
-        // TODO: login phases (username & password -> TOTP)
-
        type LoginRequest struct {
            Username string `json:"username"`
            Password string `json:"password"`