• Tan Le's avatar
    Audit failed 2-factor authentication · d4cab271
    Tan Le authored
    First failed factor authentication (i.e using password) is audited but
    not the second failed factor authentication. This change audits the
    later. The ability to view the second authentication attempts allows
    better monitoring of malicious attacks when the user's password has been
    compromised.
    d4cab271
authenticates_with_two_factor.rb 5.75 KB