summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMathijs van Veluw <[email protected]>2024-11-12 15:48:39 +0100
committerGitHub <[email protected]>2024-11-12 15:48:39 +0100
commite927b8aa5ec8f0352bfb2ff95a996a89389959ff (patch)
tree22150c6016c9c54fc7df54ab4824b4201353ceae
parentba48ca68fc165be704af50171242f656e79fe685 (diff)
downloadvaultwarden-e927b8aa5ec8f0352bfb2ff95a996a89389959ff.tar.gz
vaultwarden-e927b8aa5ec8f0352bfb2ff95a996a89389959ff.zip
Remove auth-request deletion (#5184)
2FA is needed to login even when using login-with-device. If the user didn't saved the 2FA token they still need to provide this. We deleted the auth-request after validation the request, but before 2FA was triggered. Removing the deletion of this record from that point as it will get cleaned-up automatically anyways. Signed-off-by: BlackDex <[email protected]>
-rw-r--r--src/api/identity.rs3
1 files changed, 0 insertions, 3 deletions
diff --git a/src/api/identity.rs b/src/api/identity.rs
index 003e4d97..f2618164 100644
--- a/src/api/identity.rs
+++ b/src/api/identity.rs
@@ -190,9 +190,6 @@ async fn _password_login(
)
};
- // Delete the request after we used it
- auth_request.delete(conn).await?;
-
if auth_request.user_uuid != user.uuid
|| !auth_request.approved.unwrap_or(false)
|| ip.ip.to_string() != auth_request.request_ip