router->getController()); $action = strtolower($this->router->getAction()); $ignore = ($controller === 'twofactor' && in_array($action, array('code', 'check'))) || ($controller === 'auth' && $action === 'logout'); if ($ignore === false && $this->userSession->hasPostAuthentication() && ! $this->userSession->isPostAuthenticationValidated()) { $this->setNextMiddleware(null); if ($this->request->isAjax()) { $this->response->text('Not Authorized', 401); } $this->response->redirect($this->helper->url->to('twofactor', 'code')); } $this->next(); } }