User can delete his own 2FA login history

2022-11-12 11:50:32 +01:00
parent 7887ccaa41
commit cc4a8a962b
5 changed files with 80 additions and 20 deletions
--- a/src/main.rs
+++ b/src/main.rs
@ -192,6 +192,11 @@ async fn main() -> std::io::Result<()> {
                "/settings/api/two_factor/delete_factor",
                web::post().to(two_factor_api::delete_factor),
            )
+            .route(
+                "/settings/api/two_factor/clear_login_history",
+                // Use POST to prevent CSRF
+                web::post().to(two_factor_api::clear_login_history),
+            )
            // Admin routes
            .route(
                "/admin",