]> git.koha-community.org Git - koha.git/commit
Bug 30842: 2FA - Allow at least one old TOTP
authorJonathan Druart <jonathan.druart@bugs.koha-community.org>
Wed, 25 May 2022 08:04:58 +0000 (10:04 +0200)
committerLucas Gass <lucas@bywatersolutions.com>
Fri, 10 Jun 2022 15:01:07 +0000 (15:01 +0000)
commitc380c4112c8c70ed1b885cbacd69690513dbe6a8
tree8d369ad704b1d1aee939925e015d98e8b5723369
parent9abcf38e45190ec052bd570d8cb449d4d959987e
Bug 30842: 2FA - Allow at least one old TOTP

We allow one old token when we are setting the two-factor auth, we
should reuse the same settings when validation the authentication
itself.

Test plan:
Setup 2FA for your logged-in user
Logout/Login
Have a look at the code and wait for 30 sec before using it (< 1min
however)

Signed-off-by: David Nind <david@davidnind.com>
Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
(cherry picked from commit f6110ce4170ced8ba246e295cc547c9794566ef1)

Signed-off-by: Lucas Gass <lucas@bywatersolutions.com>
C4/Auth.pm