首頁 探索 說明
登入
golang
/
netmaker
镜像来自 https://github.com/gravitl/netmaker
2
0
複刻 0
檔案 問題管理 0 Wiki
瀏覽代碼

feat(go): allow user to unset mfa if not enforced;

Vishal Dalwadi 5 月之前
父節點
af964e869b
當前提交
9950fd2e4c
共有 1 個文件被更改,包括 2 次插入2 次删除
統一視圖 顯示文件統計
  1. 2 2
      controllers/user.go

+ 2 - 2
controllers/user.go
查看文件 

@@ -1088,8 +1088,8 @@ func updateUser(w http.ResponseWriter, r *http.Request) {
 
 
 
 		}
 
 		}
 
 
 
-		if user.IsMFAEnabled && !userchange.IsMFAEnabled {
 
-			err = errors.New("user cannot unset their own mfa")
 
+		if logic.IsMFAEnforced() && user.IsMFAEnabled && !userchange.IsMFAEnabled {
 
+			err = errors.New("mfa is enforced, user cannot unset their own mfa")
 
 			slog.Error("failed to update user", "caller", caller.UserName, "attempted to update user", username, "error", err)
 
 			slog.Error("failed to update user", "caller", caller.UserName, "attempted to update user", username, "error", err)
 
 			logic.ReturnErrorResponse(w, r, logic.FormatError(err, "forbidden"))
 
 			logic.ReturnErrorResponse(w, r, logic.FormatError(err, "forbidden"))
 
 			return
 
 			return