logo

pleroma

My custom branche(s) on git.pleroma.social/pleroma/pleroma

ensure_authenticated_plug.ex (915B)

    

  1. # Pleroma: A lightweight social networking server

  2. # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>

  3. # SPDX-License-Identifier: AGPL-3.0-only

  4. 

  5. defmodule Pleroma.Plugs.EnsureAuthenticatedPlug do

  6.   import Plug.Conn

  7.   import Pleroma.Web.TranslationHelpers

  8. 

  9.   alias Pleroma.User

  10. 

  11.   use Pleroma.Web, :plug

  12. 

  13.   def init(options) do

  14.     options

  15.   end

  16. 

  17.   @impl true

  18.   def perform(

  19.         %{

  20.           assigns: %{

  21.             auth_credentials: %{password: _},

  22.             user: %User{multi_factor_authentication_settings: %{enabled: true}}

  23.           }

  24.         } = conn,

  25.         _

  26.       ) do

  27.     conn

  28.     |> render_error(:forbidden, "Two-factor authentication enabled, you must use a access token.")

  29.     |> halt()

  30.   end

  31. 

  32.   def perform(%{assigns: %{user: %User{}}} = conn, _) do

  33.     conn

  34.   end

  35. 

  36.   def perform(conn, _) do

  37.     conn

  38.     |> render_error(:forbidden, "Invalid credentials.")

  39.     |> halt()

  40.   end

  41. end