From 87d0c9088de94bb76c4a86a95fd2470b95c86306 Mon Sep 17 00:00:00 2001
From: kolaente <k@knt.li>
Date: Sat, 18 Apr 2020 00:22:59 +0200
Subject: [PATCH] Add endpoint to get the current users totp status

---
 pkg/routes/api/v1/user_totp.go | 24 ++++++++++++++++++++++++
 pkg/routes/routes.go           |  1 +
 pkg/user/totp.go               |  9 +++++----
 3 files changed, 30 insertions(+), 4 deletions(-)

diff --git a/pkg/routes/api/v1/user_totp.go b/pkg/routes/api/v1/user_totp.go
index 1546ca44678..45431339097 100644
--- a/pkg/routes/api/v1/user_totp.go
+++ b/pkg/routes/api/v1/user_totp.go
@@ -122,3 +122,27 @@ func UserTOTPQrCode(c echo.Context) error {
 
 	return c.Blob(http.StatusOK, "image/jpeg", buff.Bytes())
 }
+
+// UserTOTP returns the current totp implementation if any is enabled.
+// @Summary Totp setting for the current user
+// @Description Returns the current user totp setting or an error if it is not enabled.
+// @tags user
+// @Accept json
+// @Produce json
+// @Security JWTKeyAuth
+// @Success 200 {object} user.TOTP "The totp settings."
+// @Failure 500 {object} models.Message "Internal server error."
+// @Router /user/settings/totp [get]
+func UserTOTP(c echo.Context) error {
+	u, err := user.GetCurrentUser(c)
+	if err != nil {
+		return handler.HandleHTTPError(err, c)
+	}
+
+	t, err := user.GetTOTPForUser(u)
+	if err != nil {
+		return handler.HandleHTTPError(err, c)
+	}
+
+	return c.JSON(http.StatusOK, t)
+}
diff --git a/pkg/routes/routes.go b/pkg/routes/routes.go
index fecbd08e4e3..1a11c5b3712 100644
--- a/pkg/routes/routes.go
+++ b/pkg/routes/routes.go
@@ -209,6 +209,7 @@ func registerAPIRoutes(a *echo.Group) {
 	u.GET("s", apiv1.UserList)
 	u.POST("/token", apiv1.RenewToken)
 	u.POST("/settings/email", apiv1.UpdateUserEmail)
+	u.GET("/settings/totp", apiv1.UserTOTP)
 	u.POST("/settings/totp/enroll", apiv1.UserTOTPEnroll)
 	u.POST("/settings/totp/enable", apiv1.UserTOTPEnable)
 	u.GET("/settings/totp/qrcode", apiv1.UserTOTPQrCode)
diff --git a/pkg/user/totp.go b/pkg/user/totp.go
index 70d1151d146..dc942e54fbc 100644
--- a/pkg/user/totp.go
+++ b/pkg/user/totp.go
@@ -44,12 +44,13 @@ type TOTPPasscode struct {
 	Passcode string `json:"passcode"`
 }
 
-// TOTPEnabledForUser checks if totp is enabled for a user - not if it is activated, use getTOTPForUser to check that.
+// TOTPEnabledForUser checks if totp is enabled for a user - not if it is activated, use GetTOTPForUser to check that.
 func TOTPEnabledForUser(user *User) (bool, error) {
 	return x.Where("user_id = ?", user.ID).Exist(&TOTP{})
 }
 
-func getTOTPForUser(user *User) (t *TOTP, err error) {
+// GetTOTPForUser returns the current state of totp settings for the user.
+func GetTOTPForUser(user *User) (t *TOTP, err error) {
 	t = &TOTP{}
 	exists, err := x.Where("user_id = ?", user.ID).Get(t)
 	if err != nil {
@@ -106,7 +107,7 @@ func EnableTOTP(passcode *TOTPPasscode) (err error) {
 
 // ValidateTOTPPasscode validated totp codes of users.
 func ValidateTOTPPasscode(passcode *TOTPPasscode) (t *TOTP, err error) {
-	t, err = getTOTPForUser(passcode.User)
+	t, err = GetTOTPForUser(passcode.User)
 	if err != nil {
 		return
 	}
@@ -120,7 +121,7 @@ func ValidateTOTPPasscode(passcode *TOTPPasscode) (t *TOTP, err error) {
 
 // GetTOTPQrCodeForUser returns a qrcode for a user's totp setting
 func GetTOTPQrCodeForUser(user *User) (qrcode image.Image, err error) {
-	t, err := getTOTPForUser(user)
+	t, err := GetTOTPForUser(user)
 	if err != nil {
 		return
 	}