/**
* Check to see if the user is logged in and activated, and hasn't been banned or suspended.
*
* @return bool
*/
public function check()
{
$user = BackendAuth::getUser();
// Something funky has happened. Don't initiate an MFA check.
if (!$user) {
return true;
}
// Not using MFA. Good to move on.
if (!$user->mfa_enabled) {
return true;
}
// User has never MFA'd before - so we know they'll need to do it
if (!$user->mfa_persist_code) {
return false;
}
// The user has logged in again since last MFA. They'll need to re-MFA
if ($this->generatePersistCode($user) != $user->mfa_persist_code) {
return false;
}
// Do standard checks
if (!parent::check()) {
return false;
}
return true;
}
/**
* Check to see if the user is logged in and activated, and hasn't been banned or suspended.
*
* @return bool
* @static
*/
public static function check()
{
//Method inherited from \October\Rain\Auth\Manager
return \Backend\Classes\AuthManager::check();
}
