Parse enum as to accept 0 values or full string values

2025-07-02 00:22:50 -05:00 · 2017-01-28 17:28:28 -05:00
parent 4354006a27
commit 8514d1f16d
4 changed files with 15 additions and 7 deletions
--- a/src/Api/Controllers/AccountsController.cs
+++ b/src/Api/Controllers/AccountsController.cs
@ -210,7 +210,7 @@ namespace Bit.Api.Controllers
                throw new BadRequestException("MasterPasswordHash", "Invalid password.");
            }

-            if(!await _userManager.VerifyTwoFactorTokenAsync(user, "Authenticator", model.Token))
+            if(!await _userManager.VerifyTwoFactorTokenAsync(user, TwoFactorProviderType.Authenticator.ToString(), model.Token))
            {
                await Task.Delay(2000);
                throw new BadRequestException("Token", "Invalid token.");
@ -247,7 +247,7 @@ namespace Bit.Api.Controllers
                throw new BadRequestException("MasterPasswordHash", "Invalid password.");
            }

-            if(!await _userManager.VerifyTwoFactorTokenAsync(user, "Authenticator", model.Token))
+            if(!await _userManager.VerifyTwoFactorTokenAsync(user, TwoFactorProviderType.Authenticator.ToString(), model.Token))
            {
                await Task.Delay(2000);
                throw new BadRequestException("Token", "Invalid token.");
--- a/src/Api/IdentityServer/ResourceOwnerPasswordValidator.cs
+++ b/src/Api/IdentityServer/ResourceOwnerPasswordValidator.cs
@ -76,14 +76,21 @@ namespace Bit.Api.IdentityServer
                {
                    if(await _userManager.CheckPasswordAsync(user, context.Password))
                    {
+                        TwoFactorProviderType twoFactorProviderType = TwoFactorProviderType.Authenticator; // Just defaulting it
                        if(!twoFactorRequest && await TwoFactorRequiredAsync(user))
                        {
                            BuildTwoFactorResult(user, context);
                            return;
                        }

+                        if(twoFactorRequest && !Enum.TryParse(twoFactorProvider, out twoFactorProviderType))
+                        {
+                            BuildTwoFactorResult(user, context);
+                            return;
+                        }
+
                        if(!twoFactorRequest ||
-                            await _userManager.VerifyTwoFactorTokenAsync(user, twoFactorProvider, twoFactorToken))
+                            await _userManager.VerifyTwoFactorTokenAsync(user, twoFactorProviderType.ToString(), twoFactorToken))
                        {
                            var device = await SaveDeviceAsync(user, context);
                            BuildSuccessResult(user, context, device);
--- a/src/Api/Startup.cs
+++ b/src/Api/Startup.cs
@ -30,6 +30,7 @@ using Bit.Core.Utilities;
 using Serilog;
 using Serilog.Events;
 using Bit.Api.IdentityServer;
+using Bit.Core.Enums;

 namespace Bit.Api
 {
@ -150,7 +151,7 @@ namespace Bit.Api
            })
            .AddUserStore<UserStore>()
            .AddRoleStore<RoleStore>()
-            .AddTokenProvider<AuthenticatorTokenProvider>("Authenticator")
+            .AddTokenProvider<AuthenticatorTokenProvider>(TwoFactorProviderType.Authenticator.ToString())
            .AddTokenProvider<EmailTokenProvider<User>>(TokenOptions.DefaultEmailProvider);

            var jwtIdentityOptions = provider.GetRequiredService<IOptions<JwtBearerIdentityOptions>>().Value;