Check against false positive for MFA
This commit is contained in:
parent
73a96ce2df
commit
862cba1a5b
1 changed files with 13 additions and 1 deletions
|
@ -756,8 +756,20 @@ App::get('/v1/teams/:teamId/memberships')
|
||||||
$memberships = array_map(function ($membership) use ($dbForProject, $team) {
|
$memberships = array_map(function ($membership) use ($dbForProject, $team) {
|
||||||
$user = $dbForProject->getDocument('users', $membership->getAttribute('userId'));
|
$user = $dbForProject->getDocument('users', $membership->getAttribute('userId'));
|
||||||
|
|
||||||
|
$mfa = $user->getAttribute('mfa', false);
|
||||||
|
|
||||||
|
if ($mfa) {
|
||||||
|
$totpEnabled = $user->getAttribute('totp', false) && $user->getAttribute('totpVerification', false);
|
||||||
|
$emailEnabled = $user->getAttribute('email', false) && $user->getAttribute('emailVerification', false);
|
||||||
|
$phoneEnabled = $user->getAttribute('phone', false) && $user->getAttribute('phoneVerification', false);
|
||||||
|
|
||||||
|
if (!$totpEnabled && !$emailEnabled && !$phoneEnabled) {
|
||||||
|
$mfa = false;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
$membership
|
$membership
|
||||||
->setAttribute('mfa', $user->getAttribute('mfa'))
|
->setAttribute('mfa', $mfa)
|
||||||
->setAttribute('teamName', $team->getAttribute('name'))
|
->setAttribute('teamName', $team->getAttribute('name'))
|
||||||
->setAttribute('userName', $user->getAttribute('name'))
|
->setAttribute('userName', $user->getAttribute('name'))
|
||||||
->setAttribute('userEmail', $user->getAttribute('email'))
|
->setAttribute('userEmail', $user->getAttribute('email'))
|
||||||
|
|
Loading…
Reference in a new issue