fix: migrate 2fa to custom auth

2025-11-13 08:13:56 +10:00 · 2025-02-14 22:00:55 +11:00
parent 595e901bc2
commit e518985833
17 changed files with 595 additions and 452 deletions
--- a/packages/trpc/server/router.ts
+++ b/packages/trpc/server/router.ts
@ -9,7 +9,6 @@ import { shareLinkRouter } from './share-link-router/router';
 import { teamRouter } from './team-router/router';
 import { templateRouter } from './template-router/router';
 import { router } from './trpc';
-import { twoFactorAuthenticationRouter } from './two-factor-authentication-router/router';
 import { webhookRouter } from './webhook-router/router';

 export const appRouter = router({
@ -24,7 +23,6 @@ export const appRouter = router({
  team: teamRouter,
  template: templateRouter,
  webhook: webhookRouter,
-  twoFactorAuthentication: twoFactorAuthenticationRouter,
 });

 export type AppRouter = typeof appRouter;
--- a/packages/trpc/server/two-factor-authentication-router/router.ts
+++ b/packages/trpc/server/two-factor-authentication-router/router.ts
@ -1,55 +0,0 @@
-import { disableTwoFactorAuthentication } from '@documenso/lib/server-only/2fa/disable-2fa';
-import { enableTwoFactorAuthentication } from '@documenso/lib/server-only/2fa/enable-2fa';
-import { setupTwoFactorAuthentication } from '@documenso/lib/server-only/2fa/setup-2fa';
-import { viewBackupCodes } from '@documenso/lib/server-only/2fa/view-backup-codes';
-
-import { authenticatedProcedure, router } from '../trpc';
-import {
-  ZDisableTwoFactorAuthenticationMutationSchema,
-  ZEnableTwoFactorAuthenticationMutationSchema,
-  ZViewRecoveryCodesMutationSchema,
-} from './schema';
-
-export const twoFactorAuthenticationRouter = router({
-  setup: authenticatedProcedure.mutation(async ({ ctx }) => {
-    return await setupTwoFactorAuthentication({
-      user: ctx.user,
-    });
-  }),
-
-  enable: authenticatedProcedure
-    .input(ZEnableTwoFactorAuthenticationMutationSchema)
-    .mutation(async ({ ctx, input }) => {
-      const user = ctx.user;
-
-      const { code } = input;
-
-      return await enableTwoFactorAuthentication({
-        user,
-        code,
-        requestMetadata: ctx.metadata.requestMetadata,
-      });
-    }),
-
-  disable: authenticatedProcedure
-    .input(ZDisableTwoFactorAuthenticationMutationSchema)
-    .mutation(async ({ ctx, input }) => {
-      const user = ctx.user;
-
-      return await disableTwoFactorAuthentication({
-        user,
-        totpCode: input.totpCode,
-        backupCode: input.backupCode,
-        requestMetadata: ctx.metadata.requestMetadata,
-      });
-    }),
-
-  viewRecoveryCodes: authenticatedProcedure
-    .input(ZViewRecoveryCodesMutationSchema)
-    .mutation(async ({ ctx, input }) => {
-      return await viewBackupCodes({
-        user: ctx.user,
-        token: input.token,
-      });
-    }),
-});
--- a/packages/trpc/server/two-factor-authentication-router/schema.ts
+++ b/packages/trpc/server/two-factor-authentication-router/schema.ts
@ -1,24 +0,0 @@
-import { z } from 'zod';
-
-export const ZEnableTwoFactorAuthenticationMutationSchema = z.object({
-  code: z.string().min(6).max(6),
-});
-
-export type TEnableTwoFactorAuthenticationMutationSchema = z.infer<
-  typeof ZEnableTwoFactorAuthenticationMutationSchema
->;
-
-export const ZDisableTwoFactorAuthenticationMutationSchema = z.object({
-  totpCode: z.string().trim().optional(),
-  backupCode: z.string().trim().optional(),
-});
-
-export type TDisableTwoFactorAuthenticationMutationSchema = z.infer<
-  typeof ZDisableTwoFactorAuthenticationMutationSchema
->;
-
-export const ZViewRecoveryCodesMutationSchema = z.object({
-  token: z.string().trim().min(1),
-});
-
-export type TViewRecoveryCodesMutationSchema = z.infer<typeof ZViewRecoveryCodesMutationSchema>;