cwinfo/powerdns-admin
5
0
Fork 0
mirror of https://github.com/cwinfo/powerdns-admin.git synced 2024-11-09 15:10:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix OTP validation

Browse Source 
The result from the form is never an int but rather a string of digits, so that's what we should be checking for.

This fixes OTP validation

(cherry picked from commit 5fe3c8b9f92665db54d74dc6b2334666c318bf0c)
This commit is contained in:
Thomas M Steenholdt 2018-06-06 09:17:26 -02:00
parent 0fb6e10cf5
commit 5d40c42bbf
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/views.py
View File

@ -365,7 +365,7 @@ def login():
# check if user enabled OPT authentication
if user.otp_secret:
if otp_token and isinstance(otp_token, int):
if otp_token and otp_token.isdigit():
good_token = user.verify_totp(otp_token)
if not good_token:
return render_template('login.html', error='Invalid credentials',