Fix exception when no 2FA token is entered when enabling or disabling

DaneEveritt · DaneEveritt · commit 50809cad3616 · 2018-02-18T13:15:10.000-06:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -3,6 +3,10 @@ This file is a running track of new features and fixes to each version of the pa
 
 This project follows [Semantic Versioning](http://semver.org) guidelines.
 
+## v0.7.1 (Derelict Dermodactylus)
+### Fixed
+* Fixes an exception when no token is entered on the 2-Factor enable/disable page and the form is submitted.
+
 ## v0.7.0 (Derelict Dermodactylus)
 ### Fixed
 * `[rc.2]` — Fixes bad API behavior on `/user` routes.
diff --git a/app/Http/Controllers/Base/SecurityController.php b/app/Http/Controllers/Base/SecurityController.php
@@ -107,7 +107,7 @@ public function generateTotp(Request $request)
     public function setTotp(Request $request)
     {
         try {
-            $this->toggleTwoFactorService->handle($request->user(), $request->input('token'));
+            $this->toggleTwoFactorService->handle($request->user(), $request->input('token') ?? '');
 
             return response('true');
         } catch (TwoFactorAuthenticationTokenInvalid $exception) {
@@ -127,7 +127,7 @@ public function setTotp(Request $request)
     public function disableTotp(Request $request)
     {
         try {
-            $this->toggleTwoFactorService->handle($request->user(), $request->input('token'), false);
+            $this->toggleTwoFactorService->handle($request->user(), $request->input('token') ?? '', false);
         } catch (TwoFactorAuthenticationTokenInvalid $exception) {
             $this->alert->danger(trans('base.security.2fa_disable_error'))->flash();
         }

Original file line number	Diff line number	Diff line change
`@@ -107,7 +107,7 @@ public function generateTotp(Request $request)`
`107`	`107`	`public function setTotp(Request $request)`
`108`	`108`	`{`
`109`	`109`	`try {`
`110`		`- $this->toggleTwoFactorService->handle($request->user(), $request->input('token'));`
	`110`	`+ $this->toggleTwoFactorService->handle($request->user(), $request->input('token') ?? '');`
`111`	`111`
`112`	`112`	`return response('true');`
`113`	`113`	`} catch (TwoFactorAuthenticationTokenInvalid $exception) {`
`@@ -127,7 +127,7 @@ public function setTotp(Request $request)`
`127`	`127`	`public function disableTotp(Request $request)`
`128`	`128`	`{`
`129`	`129`	`try {`
`130`		`- $this->toggleTwoFactorService->handle($request->user(), $request->input('token'), false);`
	`130`	`+ $this->toggleTwoFactorService->handle($request->user(), $request->input('token') ?? '', false);`
`131`	`131`	`} catch (TwoFactorAuthenticationTokenInvalid $exception) {`
`132`	`132`	`$this->alert->danger(trans('base.security.2fa_disable_error'))->flash();`
`133`	`133`	`}`