add( 'empty_username', '' . __( 'ERROR', 'miniorange-2-factor-authentication' ) . ': ' . __( 'Invalid Request.', 'miniorange-2-factor-authentication' ) ); return $mo2f_error; } else { if ( isset( $_POST['method'] ) ) { $method = sanitize_text_field( wp_unslash( $_POST['method'] ) ); } else { return; } global $mo2fdb_queries; $email = $mo2fdb_queries->get_user_detail( 'mo2f_user_email', $user_id ); $email = sanitize_email( $email ); $enduser = new MocURL(); if ( isset( $_POST['verify_phone'] ) ) { $phone = strlen( $_POST['verify_phone'] > 4 ) ? sanitize_text_field( wp_unslash( $_POST['verify_phone'] ) ) : null; } else { $phone = null; } $pass2flogin = new Miniorange_Password_2Factor_Login(); $currentuser = get_user_by( 'id', $user_id ); if ( ! MO2F_IS_ONPREM ) { $mocurl = new MocURL(); $content = json_decode( $mocurl->mo_create_user( $currentuser, $email ), true ); $response = json_decode( $mocurl->mo2f_update_user_info( $email, $method, $phone, null, null ), true ); if ( 'SUCCESS' !== $response['status'] ) { return; } } $userid = get_current_user_id(); $tfastatus = ( $userid === $user_id ) ? MoWpnsConstants::MO_2_FACTOR_PLUGIN_SETTINGS : MoWpnsConstants::MO_2_FACTOR_INITIALIZE_TWO_FACTOR; switch ( $method ) { case MoWpnsConstants::GOOGLE_AUTHENTICATOR: if ( $userid === $user_id ) { if ( isset( $_POST['mo2f_configuration_status'] ) && sanitize_text_field( wp_unslash( $_POST['mo2f_configuration_status'] ) ) === 'SUCCESS' ) { $content = array( 'status' => 'SUCCESS' ); } } else { $content = mo2f_send_twofa_setup_link_on_email( $email, $user_id, $method ); } if ( 'SUCCESS' === $content['status'] ) { $pass2flogin->mo2fa_update_user_details( $user_id, true, $method, MoWpnsConstants::SUCCESS_RESPONSE, $tfastatus, 1, $email ); if ( ! MO2F_IS_ONPREM ) { update_user_meta( $user_id, 'mo2f_external_app_type', MoWpnsConstants::GOOGLE_AUTHENTICATOR ); } } else { update_user_meta( $user_id, 'mo2f_userprofile_error_message', MoWpnsMessages::lang_translate( MoWpnsMessages::USER_PROFILE_SETUP_SMTP ) ); } break; case MoWpnsConstants::OTP_OVER_SMS: if ( ! get_option( 'mo2f_customerKey' ) ) { update_user_meta( $user_id, 'mo2f_userprofile_error_message', MoWpnsMessages::lang_translate( 'Please register with miniOrange to set the OTP Over SMS method.' ) ); return; } if ( $userid === $user_id ) { $pass2flogin->mo2fa_update_user_details( $user_id, true, $method, MoWpnsConstants::SUCCESS_RESPONSE, MoWpnsConstants::MO_2_FACTOR_PLUGIN_SETTINGS, 1, $email ); } else { $content = mo2f_send_twofa_setup_link_on_email( $email, $user_id, $method ); if ( 'SUCCESS' === $content['status'] ) { $pass2flogin->mo2fa_update_user_details( $user_id, true, $method, MoWpnsConstants::SUCCESS_RESPONSE, MoWpnsConstants::MO_2_FACTOR_PLUGIN_SETTINGS, 1, $email ); } else { update_user_meta( $user_id, 'mo2f_userprofile_error_message', MoWpnsMessages::lang_translate( MoWpnsMessages::USER_PROFILE_SETUP_SMTP ) ); } } break; case MoWpnsConstants::SECURITY_QUESTIONS: if ( $userid === $user_id ) { $obj = new Miniorange_Authentication(); $kba_ques_ans_obj = new Mo2f_KBA_Handler(); $kba_ques_ans = $kba_ques_ans_obj->mo2f_get_kba_details( $_POST ); if ( MO2f_Utility::mo2f_check_empty_or_null( $kba_ques_ans['kba_q1'] ) || MO2f_Utility::mo2f_check_empty_or_null( $kba_ques_ans['kba_a1'] ) || MO2f_Utility::mo2f_check_empty_or_null( $kba_ques_ans['kba_q2'] ) || MO2f_Utility::mo2f_check_empty_or_null( $kba_ques_ans['kba_a2'] ) || MO2f_Utility::mo2f_check_empty_or_null( $kba_ques_ans['kba_q3'] ) || MO2f_Utility::mo2f_check_empty_or_null( $kba_ques_ans['kba_a3'] ) ) { $show_message->mo2f_show_message( MoWpnsMessages::lang_translate( MoWpnsMessages::INVALID_ENTRY ), 'ERROR' ); return; } if ( 0 === strcasecmp( $kba_ques_ans['kba_q1'], $kba_ques_ans['kba_q2'] ) || 0 === strcasecmp( $kba_ques_ans['kba_q2'], $kba_ques_ans['kba_q3'] ) || 0 === strcasecmp( $kba_ques_ans['kba_q3'], $kba_ques_ans['kba_q1'] ) ) { $show_message->mo2f_show_message( MoWpnsMessages::lang_translate( MoWpnsMessages::UNIQUE_QUESTION ), 'ERROR' ); return; } $kba_registration = new MO2f_Cloud_Onprem_Interface(); $content = json_decode( $kba_registration->mo2f_register_kba_details( $email, $kba_ques_ans['kba_q1'], $kba_ques_ans['kba_a1'], $kba_ques_ans['kba_q2'], $kba_ques_ans['kba_a2'], $kba_ques_ans['kba_q3'], $kba_ques_ans['kba_a3'], $user_id ), true ); } else { $content = mo2f_send_twofa_setup_link_on_email( $email, $user_id, $method ); } if ( json_last_error() === JSON_ERROR_NONE ) { if ( 'SUCCESS' === $content['status'] ) { $pass2flogin->mo2fa_update_user_details( $user_id, true, $method, MoWpnsConstants::SUCCESS_RESPONSE, $tfastatus, 1, $email ); } else { update_user_meta( $user_id, 'mo2f_userprofile_error_message', MoWpnsMessages::lang_translate( MoWpnsMessages::USER_PROFILE_SETUP_SMTP ) ); } } break; case MoWpnsConstants::OTP_OVER_EMAIL: $content = mo2f_send_twofa_setup_link_on_email( $email, $user_id, $method ); if ( 'SUCCESS' === $content['status'] ) { $pass2flogin->mo2fa_update_user_details( $user_id, true, $method, MoWpnsConstants::SUCCESS_RESPONSE, MoWpnsConstants::MO_2_FACTOR_PLUGIN_SETTINGS, 1, $email ); delete_user_meta( $user_id, 'mo2f_configure_2FA' ); delete_user_meta( $user_id, 'test_2FA' ); } else { update_user_meta( $user_id, 'mo2f_userprofile_error_message', MoWpnsMessages::lang_translate( MoWpnsMessages::USER_PROFILE_SETUP_SMTP ) ); } break; case MoWpnsConstants::OUT_OF_BAND_EMAIL: $content = mo2f_send_twofa_setup_link_on_email( $email, $user_id, $method ); if ( 'SUCCESS' === $content['status'] ) { $pass2flogin->mo2fa_update_user_details( $user_id, true, $method, MoWpnsConstants::SUCCESS_RESPONSE, MoWpnsConstants::MO_2_FACTOR_PLUGIN_SETTINGS, 1, $email ); } else { update_user_meta( $user_id, 'mo2f_userprofile_error_message', MoWpnsMessages::lang_translate( MoWpnsMessages::USER_PROFILE_SETUP_SMTP ) ); } break; } } /** * Sends the 2fa method reconfiguration link on user's email id. * * @param string $email User's email id. * @param integer $user_id User id of the user. * @param string $tfa_method Name of the 2fa method. * @return mixed */ function mo2f_send_twofa_setup_link_on_email( $email, $user_id, $tfa_method ) { global $mo2fdb_queries, $image_path; $method_description = array( MoWpnsConstants::GOOGLE_AUTHENTICATOR => 'configure the 2nd factor', MoWpnsConstants::SECURITY_QUESTIONS => 'configure the 2nd factor', MoWpnsConstants::OTP_OVER_SMS => 'Login to the site', MoWpnsConstants::OTP_OVER_EMAIL => 'Login to the site', MoWpnsConstants::OUT_OF_BAND_EMAIL => 'Login to the site', ); $method = strval( $tfa_method ); $reconfiguraion_method = hash( 'sha512', $method ); update_site_option( $reconfiguraion_method, $method ); $txid = bin2hex( openssl_random_pseudo_bytes( 32 ) ); update_site_option( $txid, get_current_user_id() ); update_user_meta( $user_id, 'mo2f_transactionId', $txid ); update_user_meta( $user_id, 'mo2f_user_profile_set', true ); $subject = '2FA-Configuration'; $headers = array( 'Content-Type: text/html; charset=UTF-8' ); $path = plugins_url( DIRECTORY_SEPARATOR . 'views' . DIRECTORY_SEPARATOR . 'qr_over_email.php', dirname( __FILE__ ) ) . '?email=' . $email . '&user_id=' . $user_id; $url = get_site_option( 'siteurl' ) . '/wp-login.php?'; $path = $url . '&reconfigureMethod=' . $reconfiguraion_method . '&transactionId=' . $txid; $message = '

Dear ' . get_user_by( 'id', $user_id )->user_login . ',

Your 2FA method (' . esc_attr( MoWpnsConstants::mo2f_convert_method_name( $tfa_method, 'cap_to_small' ) ) . ') has been set by site admin.

Click to ' . $method_description[ $tfa_method ] . '

Thank you,
miniOrange Team

Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed.

'; $result = wp_mail( $email, $subject, $message, $headers ); if ( $result ) { $arr = array( 'status' => 'SUCCESS', 'message' => 'Successfully validated.', 'txid' => '', ); $mo2fdb_queries->update_user_details( $user_id, array( 'mo2f_AuthyAuthenticator_config_status' => false, 'mo2f_EmailVerification_config_status' => false, 'mo2f_SecurityQuestions_config_status' => false, 'mo2f_GoogleAuthenticator_config_status' => false, 'mo2f_OTPOverTelegram_config_status' => false, 'mo2f_OTPOverSMS_config_status' => false, 'mo2f_OTPOverEmail_config_status' => false, ) ); } else { $arr = array( 'status' => 'FAILED', 'message' => 'TEST FAILED.', ); } return $arr; }