Merge pull request #3282 from JCBird1012/main - vw_small

commit da8225a3bdca659d061a696ffacac909791482dd
parent af6d17b7013d4d82fac916cb867c0dd97da9c301
Author: Daniel García <dani-garcia@users.noreply.github.com>
Date:   Tue, 28 Feb 2023 23:42:47 +0100

Merge pull request #3282 from JCBird1012/main

Add confirmation for removing 2FA and deauthing sessions in admin panel
Diffstat:
M src/static/scripts/admin_users.js  | 22 ++++++++++++++--------

1 file changed, 14 insertions(+), 8 deletions(-)
diff --git a/src/static/scripts/admin_users.js b/src/static/scripts/admin_users.js
@@ -32,10 +32,13 @@ function remove2fa(event) {
         alert("Required parameters not found!");
         return false;
     }
-    _post(`${BASE_URL}/admin/users/${id}/remove-2fa`,
-        "2FA removed correctly",
-        "Error removing 2FA"
-    );
+    const confirmed = confirm(`Are you sure you want to remove 2FA for "${email}"?`);
+    if (confirmed) {
+        _post(`${BASE_URL}/admin/users/${id}/remove-2fa`,
+            "2FA removed correctly",
+            "Error removing 2FA"
+        );
+    }
 }
 
 function deauthUser(event) {
@@ -46,10 +49,13 @@ function deauthUser(event) {
         alert("Required parameters not found!");
         return false;
     }
-    _post(`${BASE_URL}/admin/users/${id}/deauth`,
-        "Sessions deauthorized correctly",
-        "Error deauthorizing sessions"
-    );
+    const confirmed = confirm(`Are you sure you want to deauthorize sessions for "${email}"?`);
+    if (confirmed) {
+        _post(`${BASE_URL}/admin/users/${id}/deauth`,
+            "Sessions deauthorized correctly",
+            "Error deauthorizing sessions"
+        );
+    }
 }
 
 function disableUser(event) {

	vw_small Hardened fork of Vaultwarden (https://github.com/dani-garcia/vaultwarden) with fewer features.
	git clone https://git.philomathiclife.com/repos/vw_small
	Log \| Files \| Refs \| README