import React, { useState, useEffect } from 'react'; import { Card, Typography, Button, Steps, Input, Alert, Result, Spin, Row, Col, Divider, Space, Statistic, message, Modal, Tabs, Checkbox, Form, Tag } from 'antd'; import { LockOutlined, SafetyCertificateOutlined, MobileOutlined, CheckCircleOutlined, CopyOutlined, SettingOutlined, InfoCircleOutlined, CheckCircleTwoTone, ExclamationCircleTwoTone } from '@ant-design/icons'; import Layout from '../layout/Layout'; const { Title, Text, Paragraph } = Typography; const { Step } = Steps; const styles = { container: { padding: '24px', background: '#fff', minHeight: 'calc(100vh - 64px)', }, pageTitle: { marginBottom: '8px', color: '#2c3e50', fontSize: '24px', fontWeight: '600', display: 'flex', alignItems: 'center', gap: 12 }, subtitle: { color: '#888', marginBottom: 24 }, card: { border: '1px solid #e8e8e8', borderRadius: 8, marginBottom: 24, background: '#fff', boxShadow: '0 2px 8px #f0f1f2' }, statusCard: { background: '#f6ffed', border: '1px solid #b7eb8f', borderRadius: 8, marginBottom: 24, padding: 24, display: 'flex', alignItems: 'center', gap: 24 }, statusIcon: { fontSize: 36 } }; const TwoFactorAuth = () => { const [loading, setLoading] = useState(true); const [status, setStatus] = useState(null); const [setupMode, setSetupMode] = useState(false); const [currentStep, setCurrentStep] = useState(0); const [setupData, setSetupData] = useState(null); const [verificationCode, setVerificationCode] = useState(''); const [verifying, setVerifying] = useState(false); const [backupCodes, setBackupCodes] = useState([]); // Admin Settings State const [settingsForm] = Form.useForm(); const [savingSettings, setSavingSettings] = useState(false); useEffect(() => { fetchStatus(); }, []); const fetchStatus = async () => { try { setLoading(true); const response = await fetch(`${window.wpApiSettings.root}safe-sites/v1/2fa/status`, { headers: { 'X-WP-Nonce': window.wpApiSettings.nonce } }); const data = await response.json(); setStatus(data); if (data.settings && data.settings.forced_roles) { settingsForm.setFieldsValue({ forced_roles: data.settings.forced_roles }); } } catch (error) { console.error('Error fetching 2FA status:', error); message.error('Failed to load 2FA status'); } finally { setLoading(false); } }; const startSetup = async () => { setSetupMode(true); setCurrentStep(0); try { const response = await fetch(`${window.wpApiSettings.root}safe-sites/v1/2fa/setup`, { method: 'POST', headers: { 'X-WP-Nonce': window.wpApiSettings.nonce } }); const data = await response.json(); setSetupData(data); setCurrentStep(1); } catch (error) { message.error('Failed to start setup'); setSetupMode(false); } }; const verifySetup = async () => { if (!verificationCode) return; setVerifying(true); try { const response = await fetch(`${window.wpApiSettings.root}safe-sites/v1/2fa/verify`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-WP-Nonce': window.wpApiSettings.nonce }, body: JSON.stringify({ code: verificationCode, secret: setupData.secret }) }); const data = await response.json(); if (data.success) { setBackupCodes(data.backup_codes); setCurrentStep(2); fetchStatus(); } else { message.error(data.message || 'Invalid code. Please try again.'); } } catch (error) { message.error(error.message || 'Verification failed. Please check your code.'); } finally { setVerifying(false); // Ensure logic runs even on error } }; const disable2FA = async () => { Modal.confirm({ title: 'Disable Two-Factor Authentication?', content: 'This will make your account less secure.', okText: 'Disable', okType: 'danger', onOk: async () => { try { const response = await fetch(`${window.wpApiSettings.root}safe-sites/v1/2fa/disable`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-WP-Nonce': window.wpApiSettings.nonce }, body: JSON.stringify({ method: 'all' }) }); const data = await response.json(); if (data.success) { message.success('2FA Disabled'); fetchStatus(); } } catch (error) { message.error('Failed to disable 2FA'); } } }); }; const saveSettings = async (values) => { setSavingSettings(true); try { const response = await fetch(`${window.wpApiSettings.root}safe-sites/v1/2fa/settings`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-WP-Nonce': window.wpApiSettings.nonce }, body: JSON.stringify(values) }); const data = await response.json(); if (data.success) { message.success('Settings saved'); } else { message.error('Failed to save settings'); } } catch (error) { message.error('Error saving settings'); } finally { setSavingSettings(false); } }; const copyToClipboard = (text) => { if (navigator.clipboard && navigator.clipboard.writeText) { navigator.clipboard.writeText(text) .then(() => message.success('Copied to clipboard')) .catch(() => fallbackCopy(text)); } else { fallbackCopy(text); } }; const fallbackCopy = (text) => { const textArea = document.createElement("textarea"); textArea.value = text; textArea.style.position = "fixed"; // Avoid scrolling to bottom document.body.appendChild(textArea); textArea.focus(); textArea.select(); try { const successful = document.execCommand('copy'); if (successful) { message.success('Copied to clipboard'); } else { message.error('Failed to copy'); } } catch (err) { message.error('Failed to copy'); } document.body.removeChild(textArea); }; const generateBackupCodes = async (sendEmail = false) => { try { const response = await fetch(`${window.wpApiSettings.root}safe-sites/v1/2fa/backup-codes`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-WP-Nonce': window.wpApiSettings.nonce }, body: JSON.stringify({ send_email: sendEmail }) }); const data = await response.json(); if (data.success) { setBackupCodes(data.codes); fetchStatus(); if (sendEmail) { message.success('New codes generated and sent to your email'); } else { message.success('New backup codes generated'); } Modal.info({ title: 'New Backup Codes', content: (

Save these codes in a safe place. Previous codes are now invalid.

{sendEmail &&

A copy has been sent to your email.

}
{data.codes.join('\n')}
), onOk() { } }); } else { message.error('Failed to generate codes'); } } catch (error) { message.error('Error generating codes'); } }; if (loading && !status) { return (
); } const My2FAContent = (
{status?.enabled ? (
Two-Factor Authentication is Enabled Your account is secure.
) : (
Two-Factor Authentication is Disabled Enable it to add an extra layer of security.
)} {status?.enabled ? (

Two-factor authentication is currently enabled for your account.

) : (

Protect your account with an extra layer of security. Once configured, you'll be required to enter both your password and an authentication code.

)} {status?.enabled && ( Backup codes can be used to access your account if you lose your device. )}
{status?.activity_log?.map((log, idx) => ( ))} {!status?.activity_log?.length && ( )}
Time Event Status IP Address
{log.time} {log.event} {log.status} {log.ip}
No activity recorded yet
); // Check if user is admin (simple check via roles) const isAdmin = status?.user_roles?.includes('administrator'); const SettingsContent = (
{status?.available_roles && Object.entries(status.available_roles).map(([slug, name]) => ( {name} ))}
); const items = [ { key: '1', label: My 2FA, children: My2FAContent, }, ]; if (isAdmin) { items.push({ key: '2', label: Global Settings, children: SettingsContent, }); } return (
Two-Factor Authentication
Secure your account with two-step verification.
{ if (currentStep !== 2) setSetupMode(false); }} footer={null} width={600} maskClosable={false} > } /> } /> } /> {currentStep === 1 && setupData && (
Scan this QR code with your authenticator app (e.g. Google Authenticator, Authy).
QR Code
Or manually enter this Secret Key into your Authenticator App: } onClick={() => copyToClipboard(setupData.secret)} /> } style={{ maxWidth: 300, margin: '0 auto' }} /> Enter the 6-digit code from your app: setVerificationCode(e.target.value)} maxLength={6} style={{ width: 150, textAlign: 'center', fontSize: '18px', letterSpacing: '4px' }} onPressEnter={verifySetup} />
)} {currentStep === 2 && (
Save your backup codes If you lose your device, you can use these codes to log in. Each code can only be used once. Save them in a safe place. {backupCodes.map((code, idx) => (
{code}
))}
)}
); }; export default TwoFactorAuth;