Display error if twofaSecret cannot be retrieved (#14372)
This commit is contained in:
parent
2686e6bbbe
commit
6ff63c8202
|
@ -625,6 +625,7 @@ or_enter_secret = Or enter the secret: %s
|
||||||
then_enter_passcode = And enter the passcode shown in the application:
|
then_enter_passcode = And enter the passcode shown in the application:
|
||||||
passcode_invalid = The passcode is incorrect. Try again.
|
passcode_invalid = The passcode is incorrect. Try again.
|
||||||
twofa_enrolled = Your account has been enrolled into two-factor authentication. Store your scratch token (%s) in a safe place as it is only shown once!
|
twofa_enrolled = Your account has been enrolled into two-factor authentication. Store your scratch token (%s) in a safe place as it is only shown once!
|
||||||
|
twofa_failed_get_secret = Failed to get secret.
|
||||||
|
|
||||||
u2f_desc = Security keys are hardware devices containing cryptographic keys. They can be used for two-factor authentication. Security keys must support the <a rel="noreferrer" href="https://fidoalliance.org/">FIDO U2F</a> standard.
|
u2f_desc = Security keys are hardware devices containing cryptographic keys. They can be used for two-factor authentication. Security keys must support the <a rel="noreferrer" href="https://fidoalliance.org/">FIDO U2F</a> standard.
|
||||||
u2f_require_twofa = Your account must be enrolled in two-factor authentication to use security keys.
|
u2f_require_twofa = Your account must be enrolled in two-factor authentication to use security keys.
|
||||||
|
|
|
@ -189,7 +189,14 @@ func EnrollTwoFactorPost(ctx *context.Context, form auth.TwoFactorAuthForm) {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
secret := ctx.Session.Get("twofaSecret").(string)
|
secretRaw := ctx.Session.Get("twofaSecret")
|
||||||
|
if secretRaw == nil {
|
||||||
|
ctx.Flash.Error(ctx.Tr("settings.twofa_failed_get_secret"))
|
||||||
|
ctx.Redirect(setting.AppSubURL + "/user/settings/security/two_factor/enroll")
|
||||||
|
return
|
||||||
|
}
|
||||||
|
|
||||||
|
secret := secretRaw.(string)
|
||||||
if !totp.Validate(form.Passcode, secret) {
|
if !totp.Validate(form.Passcode, secret) {
|
||||||
if !twofaGenerateSecretAndQr(ctx) {
|
if !twofaGenerateSecretAndQr(ctx) {
|
||||||
return
|
return
|
||||||
|
|
Loading…
Reference in a new issue