discourse/app/controllers/users_email_controller.rb

require_dependency 'rate_limiter'
require_dependency 'email_validator'
require_dependency 'email_updater'

class UsersEmailController < ApplicationController

  requires_login only: [:index, :update]

  skip_before_action :check_xhr, only: [:confirm]
  skip_before_action :redirect_to_login_if_required, only: [:confirm]

  def index
  end

  def update
    params.require(:email)
    user = fetch_user_from_params

    RateLimiter.new(user, "change-email-hr-#{request.remote_ip}", 6, 1.hour).performed!
    RateLimiter.new(user, "change-email-min-#{request.remote_ip}", 3, 1.minute).performed!

    updater = EmailUpdater.new(guardian, user)
    updater.change_to(params[:email])

    if updater.errors.present?
      return render_json_error(updater.errors.full_messages)
    end

    render body: nil
  rescue RateLimiter::LimitExceeded
    render_json_error(I18n.t("rate_limiter.slow_down"))
  end

  def confirm
    expires_now

    token = EmailToken.confirmable(params[:token])
    user = token&.user

    change_request =
      if user
        user.email_change_requests.where(new_email_token_id: token.id).first
      end

    if change_request&.change_state == EmailChangeRequest.states[:authorizing_new] &&
       user.totp_enabled? && !user.authenticate_second_factor(params[:second_factor_token], params[:second_factor_method].to_i)

      @update_result = :invalid_second_factor
      @backup_codes_enabled = true if user.backup_codes_enabled?

      if params[:second_factor_token].present?
        RateLimiter.new(nil, "second-factor-min-#{request.remote_ip}", 3, 1.minute).performed!
        @show_invalid_second_factor_error = true
      end
    else
      updater = EmailUpdater.new
      @update_result = updater.confirm(params[:token])

      if @update_result == :complete
        updater.user.user_stat.reset_bounce_score!
        log_on_user(updater.user)
      end
    end

    render layout: 'no_ember'
  end

end
Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00			`require_dependency 'rate_limiter'`
			`require_dependency 'email_validator'`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`require_dependency 'email_updater'`
Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00
			`class UsersEmailController < ApplicationController`

Refactor requires login logic, reduce duplicate code This also corrects the positioning in the chain of the check and removes misuse of prepend_before_action 2018-01-31 23:17:59 -05:00			`requires_login only: [:index, :update]`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`skip_before_action :check_xhr, only: [:confirm]`
			`skip_before_action :redirect_to_login_if_required, only: [:confirm]`
Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00
			`def index`
			`end`

			`def update`
			`params.require(:email)`
			`user = fetch_user_from_params`

			`RateLimiter.new(user, "change-email-hr-#{request.remote_ip}", 6, 1.hour).performed!`
			`RateLimiter.new(user, "change-email-min-#{request.remote_ip}", 3, 1.minute).performed!`

SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`updater = EmailUpdater.new(guardian, user)`
			`updater.change_to(params[:email])`
Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`if updater.errors.present?`
			`return render_json_error(updater.errors.full_messages)`
			`end`
Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00
Fix all the errors to get our tests green on Rails 5.1. 2017-08-31 00:06:56 -04:00			`render body: nil`
Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00			`rescue RateLimiter::LimitExceeded`
			`render_json_error(I18n.t("rate_limiter.slow_down"))`
			`end`

SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`def confirm`
			`expires_now`
Review Changes for https://github.com/discourse/discourse/pull/5612/commits/f4f8a293e74e6a37c7bee7645d9ca1d72a7d5bd3. 2018-02-20 01:44:51 -05:00
			`token = EmailToken.confirmable(params[:token])`
			`user = token&.user`

			`change_request =`
			`if user`
			`user.email_change_requests.where(new_email_token_id: token.id).first`
			`end`

			`if change_request&.change_state == EmailChangeRequest.states[:authorizing_new] &&`
FEATURE: Second factor backup 2018-06-28 04:12:32 -04:00			`user.totp_enabled? && !user.authenticate_second_factor(params[:second_factor_token], params[:second_factor_method].to_i)`
Review Changes for https://github.com/discourse/discourse/pull/5612/commits/f4f8a293e74e6a37c7bee7645d9ca1d72a7d5bd3. 2018-02-20 01:44:51 -05:00
FEATURE: Implement 2factor login TOTP implemented review items. Blocking previous codes - valid 2-factor auth tokens can only be authenticated once/30 seconds. I played with updating the “last used” any time the token was attempted but that seemed to be overkill, and frustrating as to why a token would fail. Translatable texts. Move second factor logic to a helper class. Move second factor specific controller endpoints to its own controller. Move serialization logic for 2-factor details in admin user views. Add a login ember component for de-duplication Fix up code formatting Change verbiage of google authenticator add controller tests: second factor controller tests change email tests change password tests admin login tests add qunit tests - password reset, preferences fix: check for 2factor on change email controller fix: email controller - only show second factor errors on attempt fix: check against 'true' to enable second factor. Add modal for explaining what 2fa with links to Google Authenticator/FreeOTP add two factor to email signin link rate limit if second factor token present add rate limiter test for second factor attempts 2017-12-21 20:18:12 -05:00			`@update_result = :invalid_second_factor`
FEATURE: Second factor backup 2018-06-28 04:12:32 -04:00			`@backup_codes_enabled = true if user.backup_codes_enabled?`
Review Changes for https://github.com/discourse/discourse/pull/5612/commits/f4f8a293e74e6a37c7bee7645d9ca1d72a7d5bd3. 2018-02-20 01:44:51 -05:00
FEATURE: Implement 2factor login TOTP implemented review items. Blocking previous codes - valid 2-factor auth tokens can only be authenticated once/30 seconds. I played with updating the “last used” any time the token was attempted but that seemed to be overkill, and frustrating as to why a token would fail. Translatable texts. Move second factor logic to a helper class. Move second factor specific controller endpoints to its own controller. Move serialization logic for 2-factor details in admin user views. Add a login ember component for de-duplication Fix up code formatting Change verbiage of google authenticator add controller tests: second factor controller tests change email tests change password tests admin login tests add qunit tests - password reset, preferences fix: check for 2factor on change email controller fix: email controller - only show second factor errors on attempt fix: check against 'true' to enable second factor. Add modal for explaining what 2fa with links to Google Authenticator/FreeOTP add two factor to email signin link rate limit if second factor token present add rate limiter test for second factor attempts 2017-12-21 20:18:12 -05:00			`if params[:second_factor_token].present?`
			`RateLimiter.new(nil, "second-factor-min-#{request.remote_ip}", 3, 1.minute).performed!`
			`@show_invalid_second_factor_error = true`
			`end`
Review Changes for https://github.com/discourse/discourse/pull/5612/commits/f4f8a293e74e6a37c7bee7645d9ca1d72a7d5bd3. 2018-02-20 01:44:51 -05:00			`else`
			`updater = EmailUpdater.new`
			`@update_result = updater.confirm(params[:token])`
FEATURE: Implement 2factor login TOTP implemented review items. Blocking previous codes - valid 2-factor auth tokens can only be authenticated once/30 seconds. I played with updating the “last used” any time the token was attempted but that seemed to be overkill, and frustrating as to why a token would fail. Translatable texts. Move second factor logic to a helper class. Move second factor specific controller endpoints to its own controller. Move serialization logic for 2-factor details in admin user views. Add a login ember component for de-duplication Fix up code formatting Change verbiage of google authenticator add controller tests: second factor controller tests change email tests change password tests admin login tests add qunit tests - password reset, preferences fix: check for 2factor on change email controller fix: email controller - only show second factor errors on attempt fix: check against 'true' to enable second factor. Add modal for explaining what 2fa with links to Google Authenticator/FreeOTP add two factor to email signin link rate limit if second factor token present add rate limiter test for second factor attempts 2017-12-21 20:18:12 -05:00
Review Changes for https://github.com/discourse/discourse/pull/5612/commits/f4f8a293e74e6a37c7bee7645d9ca1d72a7d5bd3. 2018-02-20 01:44:51 -05:00			`if @update_result == :complete`
			`updater.user.user_stat.reset_bounce_score!`
			`log_on_user(updater.user)`
			`end`
reset bounce score when email is successfully changed 2017-02-20 04:37:01 -05:00			`end`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
			`render layout: 'no_ember'`
			`end`

Move updating a user's email to its own controller 2016-03-07 13:45:33 -05:00			`end`