Add 2FA check to the OAuth authentication mechanism

2016-06-29 11:55:23 -05:00 · 2016-06-29 11:55:23 -05:00 · 54c514f24e
parent 79fd3c7b9e
commit 54c514f24e
1 changed files with 1 additions and 0 deletions
--- a/app/controllers/omniauth_callbacks_controller.rb
+++ b/app/controllers/omniauth_callbacks_controller.rb
@ -107,6 +107,7 @@ class OmniauthCallbacksController < Devise::OmniauthCallbacksController
    # Only allow properly saved users to login.
    if @user.persisted? && @user.valid?
      log_audit_event(@user, with: oauth['provider'])
+      prompt_for_two_factor(@user) and return if @user.two_factor_enabled?
      sign_in_and_redirect(@user)
    else
      error_message = @user.errors.full_messages.to_sentence