Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add validation for two factor codes #13870

Merged
merged 12 commits into from
Jan 3, 2023
Merged

Add validation for two factor codes #13870

Show file tree
Hide file tree
Changes from 10 commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
c7b818b
add two factor validation
arosiclair Dec 28, 2022
9c10419
added unit tests for two factor validation
arosiclair Dec 28, 2022
1d4fe66
test entire two factor string for base64
arosiclair Dec 28, 2022
35cf1cf
use two factor code validation
arosiclair Dec 28, 2022
fbb1d14
Merge branch 'main' into arosiclair-two-factor-validation
arosiclair Dec 28, 2022
ef1693b
rename to CODE_2FA
arosiclair Dec 29, 2022
d014d03
simplify regex validation
arosiclair Dec 29, 2022
cf2f2b9
simplify password and twofactor validation
arosiclair Dec 29, 2022
2c9ec97
de-nest and further simplify validation
arosiclair Dec 29, 2022
0580cf8
remove object destructuring
arosiclair Dec 29, 2022
0bb5d15
restrict 2FA codes to 6 digits
arosiclair Jan 2, 2023
1ad0dc6
remove outdated comment
arosiclair Jan 2, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions src/CONST.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -760,6 +760,7 @@ const CONST = {
EMOJI_NAME: /:[\w+-]+:/g,
EMOJI_SUGGESTIONS: /:[a-zA-Z]{1,20}(\s[a-zA-Z]{0,20})?$/,
AFTER_FIRST_LINE_BREAK: /\n.*/g,
CODE_2FA: /^[\w\d+/]+={0,2}$/, // matches twoFactorAuthCode WAF rule
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
CODE_2FA: /^[\w\d+/]+={0,2}$/, // matches twoFactorAuthCode WAF rule
CODE_2FA: /^[\w\d+/]+={0,2}$/, // Matches twoFactorAuthCode WAF rule

},

PRONOUNS: {
Expand Down
9 changes: 9 additions & 0 deletions src/libs/ValidationUtils.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -274,6 +274,14 @@ function isValidPassword(password) {
return password.match(CONST.PASSWORD_COMPLEXITY_REGEX_STRING);
}

/**
* @param {String} code
* @returns {Boolean}
*/
function isValidTwoFactorCode(code) {
return Boolean(code.match(CONST.REGEX.CODE_2FA));
}

/**
* @param {String} input
* @returns {Boolean}
Expand Down Expand Up @@ -409,6 +417,7 @@ export {
isValidURL,
validateIdentity,
isValidPassword,
isValidTwoFactorCode,
isPositiveInteger,
isNumericWithSpecialChars,
isValidPaypalUsername,
Expand Down
19 changes: 14 additions & 5 deletions src/pages/signin/PasswordForm.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -114,31 +114,40 @@ class PasswordForm extends React.Component {
* Check that all the form fields are valid, then trigger the submit callback
*/
validateAndSubmitForm() {
if (!this.state.password.trim() && this.props.account.requiresTwoFactorAuth && !this.state.twoFactorAuthCode.trim()) {
const password = this.state.password.trim();
const twoFactorCode = this.state.twoFactorAuthCode.trim();
const requiresTwoFactorAuth = this.props.account.requiresTwoFactorAuth;

if (!password && requiresTwoFactorAuth && !twoFactorCode) {
this.setState({formError: 'passwordForm.pleaseFillOutAllFields'});
return;
}

if (!this.state.password.trim()) {
if (!password) {
this.setState({formError: 'passwordForm.pleaseFillPassword'});
return;
}

if (!ValidationUtils.isValidPassword(this.state.password)) {
if (!ValidationUtils.isValidPassword(password)) {
this.setState({formError: 'passwordForm.error.incorrectPassword'});
return;
}

if (this.props.account.requiresTwoFactorAuth && !this.state.twoFactorAuthCode.trim()) {
if (requiresTwoFactorAuth && !twoFactorCode) {
this.setState({formError: 'passwordForm.pleaseFillTwoFactorAuth'});
return;
}

if (requiresTwoFactorAuth && !ValidationUtils.isValidTwoFactorCode(twoFactorCode)) {
this.setState({formError: 'passwordForm.error.incorrect2fa'});
return;
}

this.setState({
formError: null,
});

Session.signIn(this.state.password, this.state.twoFactorAuthCode);
Session.signIn(password, twoFactorCode);
}

render() {
Expand Down
21 changes: 21 additions & 0 deletions tests/unit/ValidationUtilsTest.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
const ValidationUtils = require('../../src/libs/ValidationUtils');

describe('ValidationUtils', () => {
describe('isValidTwoFactorCode', () => {
test('numeric two factor code', () => {
expect(ValidationUtils.isValidTwoFactorCode('123456')).toBe(true);
});

test('alphanumeric two factor code', () => {
expect(ValidationUtils.isValidTwoFactorCode('abc123')).toBe(true);
});

test('special characters two factor code', () => {
expect(ValidationUtils.isValidTwoFactorCode('!@#$%^')).toBe(false);
});

test('partial special characters two factor code', () => {
expect(ValidationUtils.isValidTwoFactorCode('abc!@#')).toBe(false);
});
});
});
arosiclair marked this conversation as resolved.
Show resolved Hide resolved