From 8a286eee5ab1524e0ecf1d4d58949c3f47718382 Mon Sep 17 00:00:00 2001
From: Jave Lupango <jave.lupango@rdpawnshop.com>
Date: Wed, 16 Dec 2020 11:17:19 +0800
Subject: [PATCH] Two Factor Authentication Validation V2

---
 view/auth/2authfactor.front.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/view/auth/2authfactor.front.php b/view/auth/2authfactor.front.php
index 85305fe..0628bb6 100644
--- a/view/auth/2authfactor.front.php
+++ b/view/auth/2authfactor.front.php
@@ -33,11 +33,16 @@
               $val_auth = $c_Select->fn_SingleResponse($conn, "SELECT * FROM 2authfactor WHERE status='active' AND duration > 0 AND userid = ? ORDER BY dt DESC LIMIT 1", "code", $get_data);
               if(trim($_POST["twoauthfact"]) === trim($val_auth))
               {
+                $val_username = $c_Select->fn_SingleResponse($conn, "SELECT * FROM 2authfactor WHERE status='active' AND duration > 0 AND userid = ? ORDER BY dt DESC LIMIT 1", "userid", $get_data);
+                $_SESSION["username"] = $val_username;
                 echo "success - ". $val_auth;
+                $c_Del->deleteRecord($conn, "UPDATE 2authfactorlogs SET status='enactive', try= 0 WHERE username='$get_data'");
+                $c_Del->deleteRecord($conn, "UPDATE 2authfactor SET status='enactive', WHERE userid='$get_data'");
+                header("Location: ".$url."/home");
               }
               else
               {                
-                echo "Error Code";
+                echo "<center><b>Error Code Validation</b><center>";
               }
               //echo $_POST["twoauthfact"];
             }