mirror of
https://github.com/dani-garcia/vaultwarden.git
synced 2024-12-04 22:14:51 +01:00
c476e19796
An incomplete 2FA login is one where the correct master password was provided, but the 2FA token or action required to complete the login was not provided within the configured time limit. This potentially indicates that the user's master password has been compromised, but the login was blocked by 2FA. Be aware that the 2FA step can usually still be completed after the email notification has already been sent out, which could be confusing. Therefore, the incomplete 2FA time limit should be long enough that this situation would be unlikely. This feature can also be disabled entirely if desired.
9 lines
267 B
SQL
9 lines
267 B
SQL
CREATE TABLE twofactor_incomplete (
|
|
user_uuid CHAR(36) NOT NULL REFERENCES users(uuid),
|
|
device_uuid CHAR(36) NOT NULL,
|
|
device_name TEXT NOT NULL,
|
|
login_time DATETIME NOT NULL,
|
|
ip_address TEXT NOT NULL,
|
|
|
|
PRIMARY KEY (user_uuid, device_uuid)
|
|
);
|