guest()) { if ($request->ajax()) { return response('Unauthorized.', 401); } return redirect()->guest('login'); } if (intval(auth()->user()->blocked) === 1) { Auth::guard($guard)->logout(); Session::flash('logoutMessage', trans('firefly.block_account_logout')); return redirect()->guest('login'); } $is2faEnabled = Preferences::get('twoFactorAuthEnabled', false)->data; $has2faSecret = !is_null(Preferences::get('twoFactorAuthSecret')); // grab 2auth information from cookie, not from session. $is2faAuthed = Cookie::get('twoFactorAuthenticated') === 'true'; if ($is2faEnabled && $has2faSecret && !$is2faAuthed) { Log::debug('Does not seem to be 2 factor authed, redirect.'); return redirect(route('two-factor.index')); } return $next($request); } }