<?php namespace Laravel\Fortify\Actions; use Illuminate\Validation\ValidationException; use Laravel\Fortify\Contracts\TwoFactorAuthenticationProvider; use Laravel\Fortify\Events\TwoFactorAuthenticationConfirmed; class ConfirmTwoFactorAuthentication { /** * The two factor authentication provider. * * @var \Laravel\Fortify\Contracts\TwoFactorAuthenticationProvider */ protected $provider; /** * Create a new action instance. * * @param \Laravel\Fortify\Contracts\TwoFactorAuthenticationProvider $provider * @return void */ public function __construct(TwoFactorAuthenticationProvider $provider) { $this->provider = $provider; } /** * Confirm the two factor authentication configuration for the user. * * @param mixed $user * @param string $code * @return void */ public function __invoke($user, $code) { if (empty($user->two_factor_secret) || empty($code) || ! $this->provider->verify(decrypt($user->two_factor_secret), $code)) { throw ValidationException::withMessages([ 'code' => [__('The provided two factor authentication code was invalid.')], ])->errorBag('confirmTwoFactorAuthentication'); } $user->forceFill([ 'two_factor_confirmed_at' => now(), ])->save(); TwoFactorAuthenticationConfirmed::dispatch($user); } }