Fix TOTP delete authorization bug

2018-05-07 22:49:39 +02:00 · 2018-05-07 22:49:39 +02:00 · 6293e1c93b
commit 6293e1c93b
parent dcb83d6a65
1 changed files with 1 additions and 1 deletions
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/2F/Register/TOTP.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/2F/Register/TOTP.pm
@ -264,7 +264,7 @@ sub run {
    }

    # Check if unregistration is allowed
-    unless ( $self->conf->{totp2fUserCanChangeKey} ) {
+    unless ( $self->conf->{totp2fUserCanRemoveKey} ) {
        return $self->p->sendError( $req, 'notAuthorized', 400 );
    }