New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Multifactor Authentication: Integration branch #3711
Conversation
Add update_com.woltlab.wcf_5.4_migrate_multifactor.php
This still MUST NOT ever happen, but in case it does the error message is more useful and it was easy enough to implement.
Add multi-factor management to UserEditForm
For the UserPasswordFormField.
Add generic reauthentication implementation
wcfsetup/install/files/lib/system/user/multifactor/TotpMultifactorMethod.class.php
Outdated
Show resolved
Hide resolved
wcfsetup/install/files/lib/system/user/multifactor/EmailMultifactorMethod.class.php
Outdated
Show resolved
Hide resolved
wcfsetup/install/files/acp/update_com.woltlab.wcf_5.4_migrate_multifactor.php
Show resolved
Hide resolved
wcfsetup/install/files/acp/update_com.woltlab.wcf_5.4_migrate_multifactor.php
Outdated
Show resolved
Hide resolved
return ( | ||
WCF::getUser()->userID == $this->userID || | ||
WCF::getSession()->getPermission('user.profile.avatar.canSeeAvatars') || | ||
(($pending = WCF::getSession()->getPendingUserChange()) && $pending->userID == $this->userID) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why do I need to see the Avatars then? I assume that this is a change that is now irrelevant due to template changes...?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, this is technically irrelevant now. However it allows grants access to the pending user's avatar which is not wrong, so I'll leave this as-is.
ToDo: