{"version":3,"file":"LoginTotpDialog.js","sourceRoot":"","sources":["../../../Pages/Login/LoginTotpDialog.ts"],"names":[],"mappings":";AAAA,IAAU,MAAM,CA4If;AA5ID,WAAU,QAAM;IAAC,IAAA,SAAS,CA4IzB;IA5IgB,WAAA,SAAS;QAmBxB,MAAM,6BAA8B,SAAQ,EAAE,CAAC,oBAAoB;YACjE,YAAmB,IAAc,EAAS,qBAA6B;gBACrE,KAAK,CAAC,wBAAwB,CAAC,CAAC;gBADf,SAAI,GAAJ,IAAI,CAAU;gBAAS,0BAAqB,GAArB,qBAAqB,CAAQ;YAEvE,CAAC;SACF;QAMD,MAAM,wBAAyB,SAAQ,EAAE,CAAC,oBAAoB;YAC5D,YAAmB,qBAA6B;gBAC9C,KAAK,CAAC,mBAAmB,CAAC,CAAC;gBADV,0BAAqB,GAArB,qBAAqB,CAAQ;YAEhD,CAAC;SACF;QAMD,MAAM,eAAgB,SAAQ,EAAE,CAAC,oBAAoB;YACnD,YAAmB,qBAA6B,EAAS,eAAuB,EAAS,QAAkB,EAAS,oBAA4B;gBAC9I,KAAK,CAAC,UAAU,CAAC,CAAC;gBADD,0BAAqB,GAArB,qBAAqB,CAAQ;gBAAS,oBAAe,GAAf,eAAe,CAAQ;gBAAS,aAAQ,GAAR,QAAQ,CAAU;gBAAS,yBAAoB,GAApB,oBAAoB,CAAQ;YAEhJ,CAAC;SACF;QAMD,IAAI,MAAgC,CAAC;QACrC,IAAI,qBAA4C,CAAC;QAGjD,IAAI,eAAe,GAAW,IAAI,CAAC;QAEnC,SAAS,aAAa,KAAK,OAAO,MAAM,CAAC,SAAS,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC,CAAC,CAAC;QAEnG,SAAgB,IAAI,CAAC,CAAwB;YAC3C,qBAAqB,GAAG,CAAC,CAAC;YAC1B,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;YAErC,MAAM,GAAG,IAAI,EAAE,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,EAAE,EAAE,KAAK,EAAE,EAAE,WAAW,EAAE,KAAK,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAC5G,MAAM,CAAC,OAAO,EAAE,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC,MAAM,GAAG,IAAI,CAAA,CAAC,CAAC,CAAC,CAAC;YAClE,MAAM,CAAC,SAAS,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAsB,OAAO,CAAC,CAAC;YAC7E,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,CAAC,EAAE;gBAClD,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,GAAG,EAAY,CAAC;gBAC3C,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE;oBACrB,OAAO,EAAE,CAAC;iBACX;YACH,CAAC,CAAC,CAAC;YACH,SAAS,CAAC,KAAK,CAAC,CAAC;YACjB,MAAM,CAAC,IAAI,EAAE,CAAC;YAEd,aAAa,EAAE,CAAC,EAAE,WAAyB,GAAG,EAAE;gBAC9C,IAAI,CAAC,OAAO,EAAE,EAAE;oBACd,SAAS,CAAC,KAAK,CAAC,CAAC;oBACjB,eAAe,GAAG,IAAI,CAAC;oBACvB,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,EAAC,IAAI,EAAE,EAAE,EAAC,CAAC,CAAC;iBAC5C;YACH,CAAC,CAAC,CAAC;QACL,CAAC;QAvBe,cAAI,OAuBnB,CAAA;QAGD,SAAS,OAAO;YACd,IAAI,OAAO,EAAE,EAAE;gBAEb,IAAI,eAAe,EAAE;oBAEnB,IAAI,MAAM,CAAC,SAAS,CAAC,QAAQ,EAAE,EAAE;wBAC/B,MAAM,QAAQ,GAAG,MAAM,CAAC,SAAS,CAAC,aAAa,EAAE,CAAC;wBAClD,MAAM,CAAC,IAAI,CAAmB,IAAI,eAAe,CAAC,qBAAqB,CAAC,aAAa,EAAE,eAAe,EAAE,QAAQ,EAAE,qBAAqB,CAAC,oBAAoB,CAAC,CAAC;6BAC3J,IAAI,CAAC,CAAC,CAAC,EAAE;4BACR,IAAI,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,QAAQ,EAAE,CAAC,CAAC,iBAAiB,CAAC,EAAE;gCACjE,QAAQ,CAAC,OAAO,CAAC,qBAAqB,CAAC,eAAe,CAAC,CAAC;6BACzD;wBACH,CAAC,CAAC,CAAC;qBACN;iBACF;qBAAM;oBAEL,MAAM,CAAC,IAAI,CAA4B,IAAI,wBAAwB,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAC;yBACtG,IAAI,CAAC,CAAC,CAAC,EAAE;wBACR,eAAe,GAAG,CAAC,CAAC,eAAe,CAAC;wBACpC,SAAS,CAAC,IAAI,CAAC,CAAC;oBAClB,CAAC,CAAC,CAAC;iBACN;aACF;iBAAM;gBAEL,IAAI,MAAM,CAAC,SAAS,CAAC,QAAQ,EAAE,EAAE;oBAC/B,MAAM,IAAI,GAAG,MAAM,CAAC,SAAS,CAAC,aAAa,EAAE,CAAC;oBAC9C,MAAM,CAAC,IAAI,CAAiC,IAAI,6BAA6B,CAAC,IAAI,EAAE,qBAAqB,CAAC,aAAa,CAAC,CAAC;yBACtH,IAAI,CAAC,CAAC,CAAC,EAAE;wBACR,IAAI,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC,CAAC,iBAAiB,CAAC,EAAE;4BAC7D,QAAQ,CAAC,OAAO,CAAC,qBAAqB,CAAC,eAAe,CAAC,CAAC;yBACzD;oBACH,CAAC,CAAC,CAAC;iBACN;aACF;QACH,CAAC;QAED,SAAS,OAAO,KAAK,OAAO,aAAa,EAAE,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;QAE7D,SAAS,SAAS,CAAC,SAAkB;YACnC,MAAM,CAAC,SAAS,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,CAAC;YACpE,MAAM,CAAC,SAAS,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QACtE,CAAC;QAED,IAAU,MAAM,CAWf;QAXD,WAAU,MAAM;YACd,IAAI,WAAmB,CAAC;YAExB,SAAgB,IAAI,CAAsC,OAAgC;gBACxF,OAAO,CAAC,WAAW,GAAG,WAAW,CAAC;gBAClC,OAAO,IAAI,EAAE,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACtD,CAAC;YAHe,WAAI,OAGnB,CAAA;YAED,SAAgB,cAAc,CAAC,WAAmB;gBAChD,WAAW,GAAG,WAAW,CAAC;YAC5B,CAAC;YAFe,qBAAc,iBAE7B,CAAA;QACH,CAAC,EAXS,MAAM,KAAN,MAAM,QAWf;IAGH,CAAC,EA5IgB,SAAS,GAAT,kBAAS,KAAT,kBAAS,QA4IzB;AAAD,CAAC,EA5IS,MAAM,KAAN,MAAM,QA4If","sourcesContent":["namespace Dialog.LoginTotp {\r\n\r\n  export interface TotpChallengeResponse {\r\n    /** The user's session id. */\r\n    sessionGuid: string;\r\n    /** Url to the LoginActions page */\r\n    loginActionsUrl: string;\r\n    /** Markup for the (localized) TOTP dialog */\r\n    totpDialogHtml: string;\r\n    /** Authorize result from SSO, requiring TOTP */\r\n    ssoAuthResult: object;\r\n    /** The password provided by the user that cleared the password check. */\r\n    userProvidedPassword: string;\r\n  }\r\n\r\n  interface TotpForm {\r\n    totp: string;\r\n  }\r\n\r\n  class RespondToTotpChallengeRequest extends G2.ClientSessionRequest {\r\n    constructor(public form: TotpForm, public ssoAuthenticateResult: object) {\r\n      super(\"RespondToTotpChallenge\");\r\n    }\r\n  }\r\n\r\n  interface RespondToTotpChallengeResponse extends G2.ServerResponse {\r\n    invalidProperties: G2.InvalidProperties;\r\n  }\r\n\r\n  class SendResetMfaEmailRequest extends G2.ClientSessionRequest {\r\n    constructor(public ssoAuthenticateResult: object) {\r\n      super(\"SendResetMfaEmail\");\r\n    }\r\n  }\r\n\r\n  interface SendResetMfaEmailResponse extends G2.ServerResponse {\r\n    resetMfaCodeKey: string;\r\n  }\r\n\r\n  class ResetMfaRequest extends G2.ClientSessionRequest {\r\n    constructor(public ssoAuthenticateResult: object, public resetMfaCodeKey: string, public totpForm: TotpForm, public userProvidedPassword: string) {\r\n      super(\"ResetMfa\");\r\n    }\r\n  }\r\n\r\n  interface ResetMfaResponse extends G2.ServerResponse {\r\n    invalidProperties: G2.InvalidProperties;\r\n  }\r\n\r\n  let Dialog: G2.BoundDialog<TotpForm>;\r\n  let TotpChallengeResponse: TotpChallengeResponse;\r\n\r\n  /** The reset code emailed to the user.  If null, the reset code has not yet been sent. */\r\n  let ResetMfaCodeKey: string = null;\r\n\r\n  function ResetCheckbox() { return Dialog.BoundForm.Container().find(\"#login-mfa-reset-checkbox\"); }\r\n\r\n  export function Open(r: TotpChallengeResponse) {\r\n    TotpChallengeResponse = r;\r\n    Server.SetSessionGuid(r.sessionGuid);\r\n\r\n    Dialog = new G2.BoundDialog($(r.totpDialogHtml), { wijmo: { hideTrigger: wijmo.input.PopupTrigger.None } });\r\n    Dialog.Control().hiding.addHandler((_, e) => { e.cancel = true }); // prevent closing dialog\r\n    Dialog.BoundForm.Container().find(\"button\").on(G2.EventMouse.Click, OkClick);\r\n    Dialog.BoundForm.Tag(f => f.totp).on(\"input\", evt => {\r\n      const totp = $(evt.target).val() as string;\r\n      if (totp.length === 6) {\r\n        OkClick();\r\n      }\r\n    });\r\n    ShowReset(false);\r\n    Dialog.Show();\r\n\r\n    ResetCheckbox().on(G2.EventGeneric.Change, () => {\r\n      if (!IsReset()) {\r\n        ShowReset(false); // If checkbox cleared go back to MFA request form\r\n        ResetMfaCodeKey = null; // And forget any code sent\r\n        Dialog.BoundForm.SetProperties({totp: \"\"});\r\n      }\r\n    });\r\n  }\r\n\r\n  /** Handler for click of both the button to enter TOTP and that to enter a reset code. */\r\n  function OkClick() { //NOSONAR\r\n    if (IsReset()) {\r\n      // We are processing an MFA reset\r\n      if (ResetMfaCodeKey) {\r\n        // We have sent the reset code via email\r\n        if (Dialog.BoundForm.Validate()) {\r\n          const totpForm = Dialog.BoundForm.GetProperties();\r\n          Server.Post<ResetMfaResponse>(new ResetMfaRequest(TotpChallengeResponse.ssoAuthResult, ResetMfaCodeKey, totpForm, TotpChallengeResponse.userProvidedPassword))\r\n            .then(r => {\r\n              if (Dialog.BoundForm.SetProperties(totpForm, r.invalidProperties)) {\r\n                location.replace(TotpChallengeResponse.loginActionsUrl);\r\n              }\r\n            });\r\n        }\r\n      } else {\r\n        // We need to send the reset code via email\r\n        Server.Post<SendResetMfaEmailResponse>(new SendResetMfaEmailRequest(TotpChallengeResponse.ssoAuthResult))\r\n          .then(r => {\r\n            ResetMfaCodeKey = r.resetMfaCodeKey;\r\n            ShowReset(true);\r\n          });\r\n      }\r\n    } else {\r\n      // We are processing a TOTP\r\n      if (Dialog.BoundForm.Validate()) { //NOSONAR\r\n        const form = Dialog.BoundForm.GetProperties();\r\n        Server.Post<RespondToTotpChallengeResponse>(new RespondToTotpChallengeRequest(form, TotpChallengeResponse.ssoAuthResult))\r\n          .then(r => {\r\n            if (Dialog.BoundForm.SetProperties(form, r.invalidProperties)) {\r\n              location.replace(TotpChallengeResponse.loginActionsUrl);\r\n            }\r\n          });\r\n      }\r\n    }\r\n  }\r\n\r\n  function IsReset() { return ResetCheckbox().is(\":checked\"); }\r\n\r\n  function ShowReset(showReset: boolean) {\r\n    Dialog.BoundForm.Container().find(\"[data-totp]\").toggle(!showReset);\r\n    Dialog.BoundForm.Container().find(\"[data-reset]\").toggle(showReset);\r\n  }\r\n\r\n  namespace Server {\r\n    let SessionGuid: string;\r\n\r\n    export function Post<TResponse extends G2.ServerResponse>(request: G2.ClientSessionRequest): Promise<TResponse> {\r\n      request.sessionGuid = SessionGuid;\r\n      return new G2.Handler(\"LoginHandler\").Post(request);\r\n    }\r\n\r\n    export function SetSessionGuid(sessionGuid: string) {\r\n      SessionGuid = sessionGuid;\r\n    }\r\n  } // namespace Server\r\n\r\n\r\n}"]}