From 233fd1a8a1e4da808ce34f91194a423522e5c478 Mon Sep 17 00:00:00 2001
From: Frédéric Guillot <fred@kanboard.net>
Date: Fri, 1 Feb 2019 15:40:35 -0800
Subject: Authorize only API tokens when 2FA is enabled

---
 app/Model/UserModel.php | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'app/Model/UserModel.php')

diff --git a/app/Model/UserModel.php b/app/Model/UserModel.php
index d8db3270..32d0c888 100644
--- a/app/Model/UserModel.php
+++ b/app/Model/UserModel.php
@@ -38,6 +38,15 @@ class UserModel extends Base
             ->exists();
     }
 
+    public function has2FA($username)
+    {
+        return $this->db->table(self::TABLE)
+            ->eq('username', $username)
+            ->eq('is_active', 1)
+            ->eq('twofactor_activated', 1)
+            ->exists();
+    }
+
     /**
      * Return true if the user exists
      *
-- 
cgit v1.2.3