Added check if the peer is enabled and if it uses a password, a password check is required to set the otp post registration

This commit is contained in:
netkas 2025-01-29 15:40:14 -05:00
parent 7809f32a5e
commit b1c669dfa8

View file

@ -37,13 +37,21 @@
throw new StandardException('Failed to check One Time Password due to an internal exception', StandardError::INTERNAL_SERVER_ERROR, $e); throw new StandardException('Failed to check One Time Password due to an internal exception', StandardError::INTERNAL_SERVER_ERROR, $e);
} }
try if($peer->isEnabled())
{ {
$usesPassword = PasswordManager::usesPassword($peer); try
{
// If the peer is disabled, the password is not used because we assume the peer is registering
$usesPassword = PasswordManager::usesPassword($peer);
}
catch (DatabaseOperationException $e)
{
throw new StandardException('Failed to check password usage due to an internal exception', StandardError::INTERNAL_SERVER_ERROR, $e);
}
} }
catch (DatabaseOperationException $e) else
{ {
throw new StandardException('Failed to check password usage due to an internal exception', StandardError::INTERNAL_SERVER_ERROR, $e); $usesPassword = false;
} }
// Password verification is required to set an OTP if a password is set // Password verification is required to set an OTP if a password is set