Mirror
/
app-MAIL-temp
mirror of https://github.com/simple-login/app.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

return user email in /api/auth/mfa

This commit is contained in:
Son NK 2020-06-09 17:20:37 +02:00
parent 0002531bc0
commit dfe708b4fb
3 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
README.md
View File

@ -715,6 +715,7 @@ Input:
Output:
- name: user name, could be an empty string
- api_key: if MFA is not enabled, the `api key` is returned right away.
- email: user email
The `api_key` is used in all subsequent requests. It's empty if MFA is enabled.
If user hasn't enabled MFA, `mfa_key` is empty.

5
app/api/views/auth_mfa.py
View File

@ -23,7 +23,8 @@ def auth_mfa():
200 and user info containing:
{
name: "John Wick",
api_key: "a long string"
api_key: "a long string",
email: "user email"
}
"""
@ -55,7 +56,7 @@ def auth_mfa():
if not totp.verify(mfa_token):
return jsonify(error="Wrong TOTP Token"), 400
ret = {"name": user.name}
ret = {"name": user.name, "email": user.email}
api_key = ApiKey.get_by(user_id=user.id, name=device)
if not api_key:

1
tests/api/test_auth_mfa.py
View File

@ -29,6 +29,7 @@ def test_auth_mfa_success(flask_client):
assert r.status_code == 200
assert r.json["api_key"]
assert r.json["email"]
assert r.json["name"] == "Test User"