1Panel/backend/utils/mfa/mfa.go

package mfa

import (
	"bytes"
	"encoding/base64"
	"strconv"
	"time"

	"github.com/1Panel-dev/1Panel/backend/global"
	"github.com/skip2/go-qrcode"
	"github.com/xlzd/gotp"
)

const secretLength = 16

type Otp struct {
	Secret  string `json:"secret"`
	QrImage string `json:"qrImage"`
}

func GetOtp(username string, interval int) (otp Otp, err error) {
	secret := gotp.RandomSecret(secretLength)
	otp.Secret = secret
	totp := gotp.NewTOTP(secret, 6, interval, nil)
	uri := totp.ProvisioningUri(username, "1Panel")
	subImg, err := qrcode.Encode(uri, qrcode.Medium, 256)
	dist := make([]byte, 3000)
	base64.StdEncoding.Encode(dist, subImg)
	index := bytes.IndexByte(dist, 0)
	baseImage := dist[0:index]
	otp.QrImage = "data:image/png;base64," + string(baseImage)
	return
}

func ValidCode(code, intervalStr, secret string) bool {
	interval, err := strconv.Atoi(intervalStr)
	if err != nil {
		global.LOG.Errorf("type conversion failed, err: %v", err)
		return false
	}
	totp := gotp.NewTOTP(secret, 6, interval, nil)
	now := time.Now().Unix()
	strInt64 := strconv.FormatInt(now, 10)
	id16, _ := strconv.Atoi(strInt64)
	return totp.Verify(code, int64(id16))
}
feat: 增加 mfa 设置 2022-09-14 23:27:17 +08:00			`package mfa`

			`import (`
			`"bytes"`
			`"encoding/base64"`
			`"strconv"`
			`"time"`

feat: 两步验证增加自定义刷新时间 (#1441) 2023-06-25 17:52:13 +08:00			`"github.com/1Panel-dev/1Panel/backend/global"`
feat: 增加 mfa 设置 2022-09-14 23:27:17 +08:00			`"github.com/skip2/go-qrcode"`
			`"github.com/xlzd/gotp"`
			`)`

			`const secretLength = 16`

			`type Otp struct {`
			Secret string `json:"secret"`
			QrImage string `json:"qrImage"`
			`}`

feat: 两步验证增加自定义刷新时间 (#1441) 2023-06-25 17:52:13 +08:00			`func GetOtp(username string, interval int) (otp Otp, err error) {`
feat: 增加 mfa 设置 2022-09-14 23:27:17 +08:00			`secret := gotp.RandomSecret(secretLength)`
			`otp.Secret = secret`
feat: 两步验证增加自定义刷新时间 (#1441) 2023-06-25 17:52:13 +08:00			`totp := gotp.NewTOTP(secret, 6, interval, nil)`
feat: 增加 mfa 设置 2022-09-14 23:27:17 +08:00			`uri := totp.ProvisioningUri(username, "1Panel")`
			`subImg, err := qrcode.Encode(uri, qrcode.Medium, 256)`
			`dist := make([]byte, 3000)`
			`base64.StdEncoding.Encode(dist, subImg)`
			`index := bytes.IndexByte(dist, 0)`
			`baseImage := dist[0:index]`
			`otp.QrImage = "data:image/png;base64," + string(baseImage)`
			`return`
			`}`

feat: 两步验证增加自定义刷新时间 (#1441) 2023-06-25 17:52:13 +08:00			`func ValidCode(code, intervalStr, secret string) bool {`
			`interval, err := strconv.Atoi(intervalStr)`
			`if err != nil {`
			`global.LOG.Errorf("type conversion failed, err: %v", err)`
			`return false`
			`}`
			`totp := gotp.NewTOTP(secret, 6, interval, nil)`
feat: 增加 mfa 设置 2022-09-14 23:27:17 +08:00			`now := time.Now().Unix()`
			`strInt64 := strconv.FormatInt(now, 10)`
			`id16, _ := strconv.Atoi(strInt64)`
			`return totp.Verify(code, int64(id16))`
			`}`