DEV: update rake task to disable 2FA for a user
- limits security key deletes to second factor keys - also deletes backup codes (lingering backup codes break login flow entirely)
This commit is contained in:
parent
3eada7b572
commit
426d677243
|
@ -155,7 +155,13 @@ task "users:disable_2fa", [:username] => [:environment] do |_, args|
|
|||
username = args[:username]
|
||||
user = find_user(username)
|
||||
UserSecondFactor.where(user_id: user.id, method: UserSecondFactor.methods[:totp]).each(&:destroy!)
|
||||
UserSecurityKey.where(user_id: user.id).destroy_all
|
||||
UserSecurityKey.where(
|
||||
user_id: user.id,
|
||||
factor_type: UserSecurityKey.factor_types[:second_factor],
|
||||
).destroy_all
|
||||
UserSecondFactor.where(user_id: user.id, method: UserSecondFactor.methods[:backup_codes]).each(
|
||||
&:destroy!
|
||||
)
|
||||
puts "2FA disabled for #{username}"
|
||||
end
|
||||
|
||||
|
|
Loading…
Reference in New Issue