feat(2fa): implement google authenticator 2fa

- add otplib and qrcode dependencies - update user model with 2fa fields - add twoFactorCode to validation schema - implement api routes for setup, enable, disable - add 2fa verification in auth flow - add 2fa management ui in settings - implement 2fa challenge in login page
author: schererleander <leander@schererleander.de> 2025-12-26 16:24:36 +0100
committer: schererleander <leander@schererleander.de> 2025-12-26 16:24:36 +0100
commit: 67527c2f52e76725ad78719d4b0307e702bd0da1 (patch)
tree: c22ee317ce5afaa796593f11a3a2d3dff2d5ca66 /src/model
parent: ca731fb137465408a3c1729c13d785f7857e67e0 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/src/model/User.ts b/src/model/User.ts
index e1784f2..c5c81de 100644
--- a/src/model/User.ts
+++ b/src/model/User.ts
@@ -8,7 +8,9 @@ const UserSchema = new Schema({
     url: { type: String },
     key: { type: String },
     uploadedAt: { type: Date } 
-  }
+  },
+  twoFactorEnabled: { type: Boolean, default: false },
+  twoFactorSecret: { type: String }
 }, {
   timestamps: true
 });
@@ -16,6 +18,7 @@ const UserSchema = new Schema({
 UserSchema.set('toJSON', {
   transform: (_doc: Document, ret: Record<string, unknown>) => {
     delete ret.password;
+    delete ret.twoFactorSecret;
     delete ret.__v;
     return ret;
   }
author	schererleander <leander@schererleander.de>	2025-12-26 16:24:36 +0100
committer	schererleander <leander@schererleander.de>	2025-12-26 16:24:36 +0100
commit	67527c2f52e76725ad78719d4b0307e702bd0da1 (patch)
tree	c22ee317ce5afaa796593f11a3a2d3dff2d5ca66 /src/model
parent	ca731fb137465408a3c1729c13d785f7857e67e0 (diff)