From 67527c2f52e76725ad78719d4b0307e702bd0da1 Mon Sep 17 00:00:00 2001
From: schererleander <leander@schererleander.de>
Date: Fri, 26 Dec 2025 16:24:36 +0100
Subject: feat(2fa): implement google authenticator 2fa

- add otplib and qrcode dependencies
- update user model with 2fa fields
- add twoFactorCode to validation schema
- implement api routes for setup, enable, disable
- add 2fa verification in auth flow
- add 2fa management ui in settings
- implement 2fa challenge in login page
---
 src/model/User.ts | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'src/model/User.ts')

diff --git a/src/model/User.ts b/src/model/User.ts
index e1784f2..c5c81de 100644
--- a/src/model/User.ts
+++ b/src/model/User.ts
@@ -8,7 +8,9 @@ const UserSchema = new Schema({
     url: { type: String },
     key: { type: String },
     uploadedAt: { type: Date } 
-  }
+  },
+  twoFactorEnabled: { type: Boolean, default: false },
+  twoFactorSecret: { type: String }
 }, {
   timestamps: true
 });
@@ -16,6 +18,7 @@ const UserSchema = new Schema({
 UserSchema.set('toJSON', {
   transform: (_doc: Document, ret: Record<string, unknown>) => {
     delete ret.password;
+    delete ret.twoFactorSecret;
     delete ret.__v;
     return ret;
   }
-- 
cgit v1.3.1