Skynet/misc_pterodactyl-panel
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Only allow up to 30 seconds of overlap on comparing the 2FA tokens.

Browse source
This commit is contained in:
Dane Everitt 2017-02-01 23:02:54 -05:00
parent 4abdee0efb
commit a93adce303
No known key found for this signature in database
GPG key ID: EEA66103B3D71F53
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
app/Http/Controllers/Auth/LoginController.php
View file

@ -157,7 +157,7 @@ class LoginController extends Controller
}
if (! is_null($request->input('2fa_token')) && $G2FA->verifyKey($user->totp_secret, $request->input('2fa_token'))) {
if (! is_null($request->input('2fa_token')) && $G2FA->verifyKey($user->totp_secret, $request->input('2fa_token'), 1)) {
Auth::login($user, $request->has('remember'));
return redirect()->intended($this->redirectPath());