dahjah/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-04-29 23:31:07 -06:00
Code Issues Actions 8 Packages Projects Releases Wiki Activity

Fix recovery-code not working (#7102)
Some checks are pending
Build / Build and Test ${{ matrix.channel }} (msrv) (push) Waiting to run
Details
Build / Build and Test ${{ matrix.channel }} (rust-toolchain) (push) Waiting to run
Details
Check templates / Validate docker templates (push) Waiting to run
Details
Hadolint / Validate Dockerfile syntax (push) Waiting to run
Details
Release / Build Vaultwarden containers (amd64, alpine) (push) Waiting to run
Details
Release / Build Vaultwarden containers (amd64, debian) (push) Waiting to run
Details
Release / Build Vaultwarden containers (arm/v6, alpine) (push) Waiting to run
Details
Release / Build Vaultwarden containers (arm/v6, debian) (push) Waiting to run
Details
Release / Build Vaultwarden containers (arm/v7, alpine) (push) Waiting to run
Details
Release / Build Vaultwarden containers (arm/v7, debian) (push) Waiting to run
Details
Release / Build Vaultwarden containers (arm64, alpine) (push) Waiting to run
Details
Release / Build Vaultwarden containers (arm64, debian) (push) Waiting to run
Details
Release / Merge manifests (alpine) (push) Blocked by required conditions
Details
Release / Merge manifests (debian) (push) Blocked by required conditions
Details
Trivy / Trivy Scan (push) Waiting to run
Details
Code Spell Checking / Run typos spell checking (push) Waiting to run
Details
Security Analysis with zizmor / Run zizmor (push) Waiting to run
Details

Browse Source 
This commit fixes an issue where the recovery code isn't working anymore.

Fixes #7096

Signed-off-by: BlackDex <black.dex@gmail.com>
This commit is contained in:
Mathijs van Veluw 2026-04-15 20:49:58 +02:00 committed by GitHub
parent bfe420a018
commit dfebee57ec
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/api/identity.rs
View File

@ -742,7 +742,7 @@ async fn twofactor_auth(
TwoFactorIncomplete::mark_incomplete(&user.uuid, &device.uuid, &device.name, device.atype, ip, conn).await?;
let mut twofactor_ids: Vec<_> = twofactors
let twofactor_ids: Vec<_> = twofactors
.iter()
.filter_map(|tf| {
let provider_type = TwoFactorType::from_i32(tf.atype)?;
@ -753,15 +753,11 @@ async fn twofactor_auth(
err!("No enabled and usable two factor providers are available for this account")
}
// Add TwoFactorTypes which are not stored as a record but might be enabled
// Since these types could also be not valid, we do some custom checks here
twofactor_ids.extend(
(!CONFIG.disable_2fa_remember() && device.twofactor_remember.is_some())
.then_some(TwoFactorType::Remember as i32),
);
let selected_id = data.two_factor_provider.unwrap_or(twofactor_ids[0]); // If we aren't given a two factor provider, assume the first one
if !twofactor_ids.contains(&selected_id) {
// Ignore Remember and RecoveryCode Types during this check, these are special
if ![TwoFactorType::Remember as i32, TwoFactorType::RecoveryCode as i32].contains(&selected_id)
&& !twofactor_ids.contains(&selected_id)
{
err_json!(
_json_err_twofactor(&twofactor_ids, &user.uuid, data, client_version, conn).await?,
"Invalid two factor provider"