Merge branch 'cat-time-precision-2fa-ldap' into 'master'

Update the 2FA user check to use timestamps See merge request gitlab-org/gitlab!41327

Merge branch 'cat-time-precision-2fa-ldap' into 'master'
Update the 2FA user check to use timestamps See merge request gitlab-org/gitlab!41327
a69a59e5 · Drew Blessing · 8463cf91 · ebb99365 · a69a59e5 · a69a59e5
Commit a69a59e5 authored Sep 04, 2020 by Drew Blessing
2 changed files
--- a/app/controllers/concerns/authenticates_with_two_factor.rb
+++ b/app/controllers/concerns/authenticates_with_two_factor.rb
@@ -129,6 +129,10 @@ module AuthenticatesWithTwoFactor
  def user_changed?(user)
    return false unless session[:user_updated_at]

-    user.updated_at != session[:user_updated_at]
+    # See: https://gitlab.com/gitlab-org/gitlab/-/issues/244638
+    # Rounding errors happen when the user is updated, as the Rails ActiveRecord
+    # object has higher precision than what is stored in the database, therefore
+    # using .to_i to force truncation to the timestamp
+    user.updated_at.to_i != session[:user_updated_at].to_i
  end
 end
--- a/changelogs/unreleased/cat-time-precision-2fa-ldap.yml
+++ b/changelogs/unreleased/cat-time-precision-2fa-ldap.yml
+---
+title: Update the 2FA user update check to account for rounding errors
+merge_request: 41327
+author:
+type: fixed