diff --git a/backend/grant/utils/admin.py b/backend/grant/utils/admin.py index 2c1cb175..5ece3053 100644 --- a/backend/grant/utils/admin.py +++ b/backend/grant/utils/admin.py @@ -50,7 +50,7 @@ def admin_auth_2fa(code: str): # try TOTP code ok = verify_totp(user.totp_secret, code) - ok = True + # try backup codes if not ok: updated_hashes = verify_and_update_backup_codes(code, user.backup_codes)