Roeland Jago Douma ac8a6e2244 Clean pending 2FA authentication on password reset ...

When a password is reste we should make sure that all users are properly
logged in. Pending states should be cleared. For example a session where
the 2FA code is not entered yet should be cleared.

The token is now removed so the session will be killed the next time
this is checked (within 5 minutes).

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>

2019-01-29 13:08:56 +01:00

12 KiB

Raw Blame History

View Raw