nhyatt/bitwarden
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-05-20 19:14:32 -05:00
Code

Use a user-based known device check (#2318)

Browse Source
This commit is contained in:
Addison Beck 2022-09-30 09:45:07 -04:00 committed by GitHub
parent 13e33cd789
commit c8783ced6d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/Api/Controllers/AuthRequestsController.cs
View File

@ -91,8 +91,8 @@ public class AuthRequestsController : Controller
} }
if (_globalSettings.PasswordlessAuth.KnownDevicesOnly) if (_globalSettings.PasswordlessAuth.KnownDevicesOnly)
{ {
var d = await _deviceRepository.GetByIdentifierAsync(model.DeviceIdentifier); var devices = await _deviceRepository.GetManyByUserIdAsync(user.Id);
if (d == null || d.UserId != user.Id) if (devices == null || !devices.Any(d => d.Identifier == model.DeviceIdentifier))
{ {
throw new NotFoundException(); throw new NotFoundException();
} }