diff --git a/api/src/routes/auth/mfa/totp.ts b/api/src/routes/auth/mfa/totp.ts
deleted file mode 100644
index cec6e5ee..00000000
--- a/api/src/routes/auth/mfa/totp.ts
+++ /dev/null
@@ -1,49 +0,0 @@
-import { Router, Request, Response } from "express";
-import { route } from "@fosscord/api";
-import { BackupCode, FieldErrors, generateToken, User } from "@fosscord/util";
-import { verifyToken } from "node-2fa";
-import { HTTPError } from "lambert-server";
-const router = Router();
-
-export interface TotpSchema {
- code: string,
- ticket: string,
- gift_code_sku_id?: string | null,
- login_source?: string | null,
-}
-
-router.post("/", route({ body: "TotpSchema" }), async (req: Request, res: Response) => {
- const { code, ticket, gift_code_sku_id, login_source } = req.body as TotpSchema;
-
- const user = await User.findOneOrFail({
- where: {
- totp_last_ticket: ticket,
- },
- select: [
- "id",
- "totp_secret",
- "settings",
- ],
- });
-
- const backup = await BackupCode.findOne({ code: code, expired: false, consumed: false, user: { id: user.id }});
-
- if (!backup) {
- const ret = verifyToken(user.totp_secret!, code);
- if (!ret || ret.delta != 0)
- throw new HTTPError(req.t("auth:login.INVALID_TOTP_CODE"), 60008);
- }
- else {
- backup.consumed = true;
- await backup.save();
- }
-
- await User.update({ id: user.id }, { totp_last_ticket: "" });
-
- return res.json({
- token: await generateToken(user.id),
- user_settings: user.settings,
- });
-});
-
-export default router;
|
