discourse

History

David Taylor 1bfccdd4f2 DEV: Allow `run_second_factor!` to be used before login (#25420 ) In a handful of situations, we need to verify a user's 2fa credentials before `current_user` is assigned. For example: login, email_login and change-email confirmation. This commit adds an explicit `target_user:` parameter to the centralized 2fa system so that it can be used for those situations. For safety and clarity, this new parameter only works for anon. If some user is logged in, and target_user is set to a different user, an exception will be raised.	2024-01-29 12:28:47 +00:00
..
actions	DEV: Allow `run_second_factor!` to be used before login (#25420 )	2024-01-29 12:28:47 +00:00
auth_manager_spec.rb	DEV: Allow `run_second_factor!` to be used before login (#25420 )	2024-01-29 12:28:47 +00:00

DEV: Allow `run_second_factor!` to be used before login (#25420 )

In a handful of situations, we need to verify a user's 2fa credentials before `current_user` is assigned. For example: login, email_login and change-email confirmation. This commit adds an explicit `target_user:` parameter to the centralized 2fa system so that it can be used for those situations.

For safety and clarity, this new parameter only works for anon. If some user is logged in, and target_user is set to a different user, an exception will be raised.

2024-01-29 12:28:47 +00:00

actions

DEV: Allow `run_second_factor!` to be used before login (#25420 )

2024-01-29 12:28:47 +00:00

auth_manager_spec.rb

DEV: Allow `run_second_factor!` to be used before login (#25420 )

2024-01-29 12:28:47 +00:00