Admin removing second-factor methods #320
winstonwolff
started this conversation in
General
Replies: 2 comments
-
|
You should be able to use the internal_request feature to do this, and issue internal requests to remove the second factors. |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
Ah, thanks Jeremy. The answer's always in the docs. I just need to know where. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hello Jeremy—
We would like to give admins the ability to remove second factors from other users, e.g. if a user lost their phone. They cannot login to change things themselves. So the sys admin can go and delete that user's OTP second factor, and the user can login and Rodauth will ask them to setup another second factor.
My first thought on how to do this would be delete the appropriate row in the
account_otp_keysoraccount_sms_codestables. I wonder if there is another way you intend people to do this?Beta Was this translation helpful? Give feedback.
All reactions