Add epoch as default keyname if empty (#1386

lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Attributes.pm

@@ -27,7 +27,7 @@ sub types {
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -660,7 +660,7 @@ sub attributes {
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -1024,7 +1024,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                     BEGIN {
                         ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                     }
                     eval $s;
                     my $err = join(
@@ -1109,7 +1109,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -1132,7 +1132,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -1487,7 +1487,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                     BEGIN {
                         ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                     }
                     eval $s;
                     my $err = join(
@@ -1524,7 +1524,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -1875,7 +1875,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -2212,7 +2212,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(
@@ -2916,7 +2916,7 @@ qr/(?:(?:https?):\/\/(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.]
 
                 BEGIN {
                     ${^WARNING_BITS} =
-"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x05";
+"\x54\x55\x55\x55\x15\x55\x55\x55\x55\x55\x51\x55\x55\x55\x55\x55\x55\x01";
                 }
                 eval "$s $val";
                 my $err = join(

lemonldap-ng-portal/lib/Lemonldap/NG/Portal/2F/Register/TOTP.pm

@@ -174,9 +174,12 @@ sub run {
         );
     }
     
-    # Get or generate master key
-    elsif ( $action eq 'unregister' ) {
     if ( $self->conf->{totp2fUserCanChangeKey} ) {
+		return $self->p->sendError( $req, 'notAutorizated', 200 );
+	}
+
+    # Get or generate master key
+    if ( $action eq 'unregister' ) {
             $self->p->updatePersistentSession( $req, { _totp2fSecret => '' } );
             $self->userLogger->notice('TOTP unregistration succeed');
             return [
@@ -184,10 +187,6 @@ sub run {
                 ['{"result":1}']
             ];
      }
-        else {
-            return $self->p->sendError( $req, 'notAutorizated', 200 );
-        }
-    }
 
     elsif ( $action eq 'delete' ) {
         my $epoch = $req->param('epoch');

lemonldap-ng-portal/lib/Lemonldap/NG/Portal/2F/Register/U2F.pm

@@ -47,7 +47,7 @@ sub run {
         $self->logger->debug('Registration response');
         unless ($resp = $req->param('registration')
             and $challenge = $req->param('challenge')
-            and $req->param('keyName') )
+             )
         {
             return $self->p->sendError( $req, 'Missing registration parameter',
                 400 );
@@ -78,6 +78,8 @@ sub run {
                     $list2FDevices = [];
                 }
                 my $keyName = $req->param('keyName');
+                my $epoch = time();
+                $keyName ||= $epoch;
                 $self->logger->debug("Key name : $keyName");
 
                 # Select U2F Devices only
@@ -106,7 +108,7 @@ sub run {
                     name       => $keyName,
                     _userKey   => $self->encode_base64url( $userKey, '' ),
                     _keyHandle => $keyHandle,
-                    epoch      => time()
+                    epoch      => $epoch
                   };
                 $self->logger->debug(
                     "Append 2F Device : { type => 'U2F', name => $keyName }");