bert.hausmans/crewli
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4df668b5b84d4dc0021454946746da55c8b3a450
crewli/api/app/Models/MfaBackupCode.php
bert.hausmans 948687f27e feat: enterprise MFA with TOTP, email codes, backup codes, and trusted devices 
Three verification methods (TOTP authenticator, email code, backup codes),
trusted device management with 30-day expiry, role-based enforcement for
super_admin and org_admin, admin reset capability, and full test coverage
(46 tests). Modifies login flow to support MFA challenge/response with
temporary session tokens stored in cache.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-15 20:45:55 +02:00

38 lines
708 B
PHP
Raw Blame History

<?php
declare(strict_types=1);
namespace App\Models;
use Illuminate\Database\Eloquent\Builder;
use Illuminate\Database\Eloquent\Model;
use Illuminate\Database\Eloquent\Relations\BelongsTo;
final class MfaBackupCode extends Model
{
protected $fillable = [
'user_id',
'code_hash',
'used',
'used_at',
];
protected function casts(): array
{
return [
'used' => 'boolean',
'used_at' => 'datetime',
];
}
public function user(): BelongsTo
{
return $this->belongsTo(User::class);
}
public function scopeUnused(Builder $query): Builder
{
return $query->where('used', false);
}
}
Reference in New Issue View Git Blame Copy Permalink