Adding calls from someplace, maybe just the main Gatekeeper class for verifying the provided token information.
This could be in multiple places too...maybe a method on the UserModel that takes in an abstract token instance and runs the matching verifier based on the current configuration. This will need some way to get values from the current configuration (like Gatekeeper::getConfig) for things like secret keys or API credentials.
I want to make sure: does what you say mean that in the auth_tokens table, the verifier column isn't used?
What is the purpose of that column? added security?
There's a bit of functionality already in the system to support two-factor authentication tokens, but it needs to be finished out. This includes:
create_auth_token_table
migration to add theverifier
columnVerifier
structureGatekeeper
class for verifying the provided token information.This could be in multiple places too...maybe a method on the
UserModel
that takes in an abstract token instance and runs the matching verifier based on the current configuration. This will need some way to get values from the current configuration (likeGatekeeper::getConfig
) for things like secret keys or API credentials.