Improve and fix issues with 2FA

author: Frederic Guillot <fred@kanboard.net> 2015-04-03 14:40:00 -0400
committer: Frederic Guillot <fred@kanboard.net> 2015-04-03 14:40:00 -0400
commit: e5f6e364f184eaa535c6b29cbafe3418ea83d53f (patch)
tree: 7c9c684aab9dca944f4cb5ef36d10d5165d65cfd
parent: c72bca04a8be19b2da699ee58f9203f08318d241 (diff)
2 files changed, 4 insertions, 1 deletions
diff --git a/app/Auth/RememberMe.php b/app/Auth/RememberMe.php
index 4736442e..e8b20f37 100644
--- a/app/Auth/RememberMe.php
+++ b/app/Auth/RememberMe.php
@@ -103,6 +103,9 @@ class RememberMe extends Base
                 // Create the session
                 $this->userSession->refresh($this->user->getById($record['user_id']));
 
+                // Do not ask 2FA for remember me session
+                $this->session['2fa_validated'] = true;
+
                 $this->container['dispatcher']->dispatch(
                     'auth.success',
                     new AuthEvent(self::AUTH_NAME, $this->userSession->getId())
diff --git a/app/Controller/Twofactor.php b/app/Controller/Twofactor.php
index 48954dc8..e3451d33 100644
--- a/app/Controller/Twofactor.php
+++ b/app/Controller/Twofactor.php
@@ -73,7 +73,7 @@ class Twofactor extends User
         }
 
         // Allow the user to test or disable the feature
-        $this->session['user']['twofactor_activated'] = false;
+        $_SESSION['user']['twofactor_activated'] = false;
 
         $this->session->flash(t('User updated successfully.'));
         $this->response->redirect($this->helper->url('twofactor', 'index', array('user_id' => $user['id'])));
author	Frederic Guillot <fred@kanboard.net>	2015-04-03 14:40:00 -0400
committer	Frederic Guillot <fred@kanboard.net>	2015-04-03 14:40:00 -0400
commit	e5f6e364f184eaa535c6b29cbafe3418ea83d53f (patch)
tree	7c9c684aab9dca944f4cb5ef36d10d5165d65cfd
parent	c72bca04a8be19b2da699ee58f9203f08318d241 (diff)