HyperNet/Passport
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

👔 Did not block unconfirmed user login, give them no permission instead

Browse Source
This commit is contained in:
LittleSheep
2025-01-29 19:45:10 +08:00
parent 09010d5867
commit e115374589
2 changed files with 10 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/internal/http/api/auth_api.go
View File

@ -37,8 +37,6 @@ func doAuthenticate(c *fiber.Ctx) error {
user, err := services.LookupAccount(data.Username)
if err != nil {
return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("account was not found: %v", err.Error()))
} else if user.ConfirmedAt == nil {
return fiber.NewError(fiber.StatusForbidden, "account was not confirmed; check your inbox, there will be an email lead you confirm your registration")
} else if user.SuspendedAt != nil {
return fiber.NewError(fiber.StatusForbidden, "account was suspended")
}