public async Task <ResultWithError <ErrorData> > Handle(ValidateRemoteMultiFactorAuthCodeCommand request, CancellationToken cancellationToken)
{
var result = await this.Process(request, cancellationToken);
var dbResult = await this._userRepository.UnitOfWork.SaveEntitiesAsync(cancellationToken);
if (!dbResult)
{
return(ResultWithError.Fail(new ErrorData(
ErrorCodes.SavingChanges, "Failed To Save Database")));
}
return(result);
}
private async Task <ResultWithError <ErrorData> > Process(ValidateRemoteMultiFactorAuthCodeCommand request, CancellationToken cancellationToken)
{
var currentUserMaybe = this._currentUserService.CurrentUser;
if (currentUserMaybe.HasNoValue)
{
return(ResultWithError.Fail(new ErrorData(ErrorCodes.UserNotFound)));
}
var userMaybe =
await this._userRepository.Find(this._currentUserService.CurrentUser.Value.UserId, cancellationToken);
if (userMaybe.HasNoValue)
{
return(ResultWithError.Fail(new ErrorData(ErrorCodes.UserNotFound)));
}
var user = userMaybe.Value;
var totp = new Totp(user.SecurityStamp.ToByteArray());
return(ResultWithError.From(() => totp.VerifyTotp(request.Code, out var _, new VerificationWindow(3, 3)),
new ErrorData(ErrorCodes.MfaCodeNotValid)));
}
