[Koha-bugs] [Bug 32066] 2FA: User could get stuck temporarily on login screen when disabling pref
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Nov 4 19:03:01 CET 2022
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=32066
--- Comment #14 from Kyle M Hall <kyle at bywatersolutions.com> ---
Created attachment 143265
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=143265&action=edit
Bug 32066: Check 2FA pref in check_cookie_auth
Test plan:
Without this patch:
1. Set the syspref TwoFactorAuthentication (enforce or enabled)
2. Configure 2FA for a patron
3. Logout
4. Authenticate but don't enter the 2FA code
5. Switch off the syspref (disabled) [via another browser or so]
6. Patron is stuck on the [original] login screen. [Only removing
the session cookie would resolve it.]
With this patch:
1. Follow the steps above again. But note that you can refresh
your browser window to get in now.
2. Verify that Auth.t passes now too.
Signed-off-by: Marcel de Rooy <m.de.rooy at rijksmuseum.nl>
Signed-off-by: Kyle M Hall <kyle at bywatersolutions.com>
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list