nevis
/
adn-agov-iam-project
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

BUNDBITBK-4445

This commit is contained in:
haburger 2025-02-13 09:27:09 +00:00
parent 5f09c70172
commit 26d7406d47
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
patterns/9ff0369f3cf662f95d94ff09_resources/ensureRecoveryCode.groovy
View File

@ -39,21 +39,26 @@ if (Arrays.stream(response.getActualRoles()).filter( r -> r.matches('^.*AGOV-Loi
return return
} }
// 1a) check if user has a credential
// 1b) check if user has a credential
if ( recoveryCredential != null ) { if ( recoveryCredential != null ) {
LOG.debug("Account '${user}' has an active recovery code, no need to create new code") LOG.debug("Account '${user}' has an active recovery code, no need to create new code")
response.setResult('done') response.setResult('done')
return return
} }
// 1c) check if a recovery is ongoing (nothing to do) // 1b) check if a recovery is ongoing (nothing to do)
if (Arrays.stream(response.getActualRoles()).filter( r -> r.contains('AGOV-AccountStatus.recovery')).findAny().isPresent()) { if (Arrays.stream(response.getActualRoles()).filter( r -> r.contains('AGOV-AccountStatus.recovery')).findAny().isPresent()) {
LOG.debug("Account '${user}' is in recovery, no need to create new code") LOG.debug("Account '${user}' is in recovery, no need to create new code")
response.setResult('done') response.setResult('done')
return return
} }
// 1c) don't do it for mobile phones (BUNDBITBK-4445)
if (userAgent =~ /(iPhone|Android)/ ) {
LOG.debug("User '${user}' used a mobile phone, recovery code creation skipped")
response.setResult('done')
return
}
// 2) set cookie for recoveryCode // 2) set cookie for recoveryCode
if (outargs.containsKey('out.JWTToken')) { if (outargs.containsKey('out.JWTToken')) {