- Administrator email 2FA is now explicitly disabled.

Database value: two_factor_enabled = 0
Removed outstanding administrator verification codes
Seeded administrator explicitly defaults to 0
Confirmed fresh login routes directly to /admin, not /verify
This commit is contained in:
Ty Clifford
2026-06-10 22:31:33 -04:00
parent 45ef31e61f
commit 5b217956e9
2 changed files with 6 additions and 4 deletions
+3 -2
View File
@@ -135,8 +135,9 @@ final class AuthController extends BaseController
$this->db->execute( $this->db->execute(
'INSERT INTO users 'INSERT INTO users
(email, password_hash, full_name, phone, street_address, city, state, postal_code, newsletter_opt_in) (email, password_hash, full_name, phone, street_address, city, state, postal_code,
VALUES (?, ?, ?, ?, ?, ?, ?, ?, 1)', newsletter_opt_in, two_factor_enabled)
VALUES (?, ?, ?, ?, ?, ?, ?, ?, 1, 0)',
[ [
$clean['email'], $clean['email'],
password_hash((string) $input['password'], PASSWORD_DEFAULT), password_hash((string) $input['password'], PASSWORD_DEFAULT),
+3 -2
View File
@@ -374,8 +374,9 @@ SQL;
$adminStatement = $this->pdo->prepare( $adminStatement = $this->pdo->prepare(
'INSERT INTO users 'INSERT INTO users
(email, password_hash, full_name, phone, role, newsletter_opt_in, email_verified_at) (email, password_hash, full_name, phone, role, newsletter_opt_in,
VALUES (?, ?, ?, ?, ?, ?, CURRENT_TIMESTAMP)' two_factor_enabled, email_verified_at)
VALUES (?, ?, ?, ?, ?, ?, 0, CURRENT_TIMESTAMP)'
); );
$adminStatement->execute([ $adminStatement->execute([
'admin@fatbottomgrille.com', 'admin@fatbottomgrille.com',