Allow admins to disable the 2FA for a standard user

2015-04-21 19:53:33 -04:00 · 2015-04-21 19:53:33 -04:00 · 71112eb81d
parent e30bf47d94
commit 71112eb81d
21 changed files with 80 additions and 0 deletions
--- a/app/Controller/Twofactor.php
+++ b/app/Controller/Twofactor.php
@ -137,4 +137,31 @@ class Twofactor extends User
            'title' => t('Check two factor authentication code'),
        )));
    }
+
+    /**
+     * Disable 2FA for a user
+     *
+     * @access public
+     */
+    public function disable()
+    {
+        $user = $this->getUser();
+
+        if ($this->request->getStringParam('disable') === 'yes') {
+
+            $this->checkCSRFParam();
+
+            $this->user->update(array(
+                'id' => $user['id'],
+                'twofactor_activated' => 0,
+                'twofactor_secret' => '',
+            ));
+
+            $this->response->redirect($this->helper->url('user', 'show', array('user_id' => $user['id'])));
+        }
+
+        $this->response->html($this->layout('twofactor/disable', array(
+            'user' => $user,
+        )));
+    }
 }
--- a/app/Locale/da_DK/translations.php
+++ b/app/Locale/da_DK/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/de_DE/translations.php
+++ b/app/Locale/de_DE/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/es_ES/translations.php
+++ b/app/Locale/es_ES/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/fi_FI/translations.php
+++ b/app/Locale/fi_FI/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/fr_FR/translations.php
+++ b/app/Locale/fr_FR/translations.php
@ -868,4 +868,6 @@ return array(
    'Help on Mailgun integration' => 'Aide sur l\'intégration avec Mailgun',
    'Sendgrid (incoming emails)' => 'Sendgrid (emails entrants)',
    'Help on Sendgrid integration' => 'Aide sur l\'intégration avec Sendgrid',
+    'Disable two factor authentication' => 'Désactiver l\'authentification à deux facteurs',
+    'Do you really want to disable the two factor authentication for this user: "%s"?' => 'Voulez-vous vraiment désactiver l\'authentification à deux facteurs pour cet utilisateur : « %s » ?',
 );
--- a/app/Locale/hu_HU/translations.php
+++ b/app/Locale/hu_HU/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/it_IT/translations.php
+++ b/app/Locale/it_IT/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/ja_JP/translations.php
+++ b/app/Locale/ja_JP/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/nl_NL/translations.php
+++ b/app/Locale/nl_NL/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/pl_PL/translations.php
+++ b/app/Locale/pl_PL/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/pt_BR/translations.php
+++ b/app/Locale/pt_BR/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/ru_RU/translations.php
+++ b/app/Locale/ru_RU/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/sr_Latn_RS/translations.php
+++ b/app/Locale/sr_Latn_RS/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/sv_SE/translations.php
+++ b/app/Locale/sv_SE/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/th_TH/translations.php
+++ b/app/Locale/th_TH/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/tr_TR/translations.php
+++ b/app/Locale/tr_TR/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Locale/zh_CN/translations.php
+++ b/app/Locale/zh_CN/translations.php
@ -866,4 +866,6 @@ return array(
    // 'Help on Mailgun integration' => '',
    // 'Sendgrid (incoming emails)' => '',
    // 'Help on Sendgrid integration' => '',
+    // 'Disable two factor authentication' => '',
+    // 'Do you really want to disable the two factor authentication for this user: "%s"?' => '',
 );
--- a/app/Model/Acl.php
+++ b/app/Model/Acl.php
@ -74,6 +74,7 @@ class Acl extends Base
        'project' => array('remove'),
        'hourlyrate' => '*',
        'currency' => '*',
+        'twofactor' => array('disable'),
    );

    /**
--- a/app/Template/twofactor/disable.php
+++ b/app/Template/twofactor/disable.php
@ -0,0 +1,14 @@
+<div class="page-header">
+    <h2><?= t('Disable two factor authentication') ?></h2>
+</div>
+
+<div class="confirm">
+    <p class="alert alert-info">
+        <?= t('Do you really want to disable the two factor authentication for this user: "%s"?', $user['name'] ?: $user['username']) ?>
+    </p>
+
+    <div class="form-actions">
+        <?= $this->a(t('Yes'), 'twofactor', 'disable', array('user_id' => $user['id'], 'disable' => 'yes'), true, 'btn btn-red') ?>
+        <?= t('or') ?> <?= $this->a(t('cancel'), 'user', 'show', array('user_id' => $user['id'])) ?>
+    </div>
+</div>
--- a/app/Template/user/sidebar.php
+++ b/app/Template/user/sidebar.php
@ -42,6 +42,10 @@
                <li>
                    <?= $this->a(t('Two factor authentication'), 'twofactor', 'index', array('user_id' => $user['id'])) ?>
                </li>
+            <?php elseif ($this->userSession->isAdmin() && $user['twofactor_activated'] == 1): ?>
+                <li>
+                    <?= $this->a(t('Two factor authentication'), 'twofactor', 'disable', array('user_id' => $user['id'])) ?>
+                </li>
            <?php endif ?>

            <li>