Sha256: bee89cd323ef61d87b9d0b72be9e4f51f3f2b2587a5a88ae9d841f8d4115f460
Contents?: true
Size: 924 Bytes
Versions: 8
Compression:
Stored size: 924 Bytes
Contents
module Devise module Strategies class TwoFactorBackupable < Devise::Strategies::DatabaseAuthenticatable def authenticate! resource = mapping.to.find_for_database_authentication(authentication_hash) if validate(resource) { resource.invalidate_otp_backup_code!(params[scope]['otp_attempt']) } # Devise fails to authenticate invalidated resources, but if we've # gotten here, the object changed (Since we deleted a recovery code) resource.save! super end fail(Devise.paranoid ? :invalid : :not_found_in_database) unless resource # We want to cascade to the next strategy if this one fails, # but database authenticatable automatically halts on a bad password @halted = false if @result == :failure end end end end Warden::Strategies.add(:two_factor_backupable, Devise::Strategies::TwoFactorBackupable)
Version data entries
8 entries across 8 versions & 1 rubygems