starred/google2fa
1
0
Fork 0
mirror of https://github.com/antonioribeiro/google2fa.git synced 2026-04-25 16:15:49 +03:00
Code Issues 19 Projects Releases 3 Packages Wiki Activity

[GH-ISSUE #158] Documentation for verifyKeyNewer is very misleading #68

New issue
Closed
opened 2026-02-25 20:32:20 +03:00 by kerem · 1 comment
kerem commented 2026-02-25 20:32:20 +03:00
Owner
Copy link

Originally created by @jhoff on GitHub (Jul 21, 2020).
Original GitHub issue: https://github.com/antonioribeiro/google2fa/issues/158

I think the user that reported https://github.com/antonioribeiro/google2fa/issues/134 experienced the issue because the documentation is misleading:

$secret = $request->input('secret');

$timestamp = $google2fa->verifyKeyNewer($user->google2fa_secret, $secret, $user->google2fa_ts);

if ($timestamp !== false) {
    $user->update(['google2fa_ts' => $timestamp]);
    // successful
} else {
    // failed
}

If $user->google2fa_ts is set to null ( I.E for a new user ), then $timestamp will be returned as true not a timestamp

Also, it feels really misleading to refer to them as timestamps when they are a fraction of a real timestamp ( the quotient of a unix timestamp and the key regeneration value). Because of this I assumed I could make google2fa_ts a timestamp field in the database, when it should simply be an integer. I also tried to set the default value of google2fa_ts to now() to no avail.

Originally created by @jhoff on GitHub (Jul 21, 2020). Original GitHub issue: https://github.com/antonioribeiro/google2fa/issues/158 I think the user that reported https://github.com/antonioribeiro/google2fa/issues/134 experienced the issue because the documentation is misleading: ``` $secret = $request->input('secret'); $timestamp = $google2fa->verifyKeyNewer($user->google2fa_secret, $secret, $user->google2fa_ts); if ($timestamp !== false) { $user->update(['google2fa_ts' => $timestamp]); // successful } else { // failed } ``` If `$user->google2fa_ts` is set to null ( I.E for a new user ), then `$timestamp` will be returned as `true` not a timestamp Also, it feels really misleading to refer to them as `timestamps` when they are a fraction of a real timestamp ( the quotient of a unix timestamp and the key regeneration value). Because of this I assumed I could make `google2fa_ts` a timestamp field in the database, when it should simply be an integer. I also tried to set the default value of `google2fa_ts` to `now()` to no avail.
kerem closed this issue 2026-02-25 20:32:20 +03:00
kerem commented 2026-02-25 20:32:20 +03:00
Author
Owner
Copy link

@jhoff commented on GitHub (Nov 12, 2020):

This is still a problem, but I'm cleaning house and no longer want to look at it.

<!-- gh-comment-id:725870787 --> @jhoff commented on GitHub (Nov 12, 2020): This is still a problem, but I'm cleaning house and no longer want to look at it.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
9.x
fix-coverage
bump-to-version-9
10.x
reformat-code
add-linting
reorder-imports
8.x
install-php-84
test-on-php84
github-actions
master
7.x
pspstan
revert-124-123-google2fa_fix
v9.0.0
v8.0.3
v8.0.2
v8.0.1
8.0.0
v7.0.0
v6.1.3
v6.1.0
v6.0.1
v6.0.0
v4.0.2
v4.0.1
v5.0.0
v4.0.0
v3.0.3
v3.0.2
v3.0.1
v3.0.0
v2.0.7
v2.0.6
v2.0.5
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.0.1
v1.0.0
v0.8.1
v0.8.0
v0.7.1
v0.7.0
v0.6.0
v0.5.0
v0.1.0
Labels
Clear labels   
bug

   
pull-request

Mirrored from GitHub Pull Request

No labels
bug
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/google2fa#68
No description provided.