Fix webauthn secure key authentication (#16792)

* Add tests * Fix webauthn secure key authentication Fixes #16769
2021-09-30 05:26:29 +02:00 · 2021-09-30 05:26:29 +02:00 · 2396c9061a
commit 2396c9061a
parent 663b58aaae
2 changed files with 30 additions and 1 deletions
--- a/app/controllers/auth/sessions_controller.rb
+++ b/app/controllers/auth/sessions_controller.rb
@ -40,7 +40,7 @@ class Auth::SessionsController < Devise::SessionsController
  end

  def webauthn_options
-    user = find_user
+    user = User.find_by(id: session[:attempt_user_id])

    if user.webauthn_enabled?
      options_for_get = WebAuthn::Credential.options_for_get(