From e927b8aa5ec8f0352bfb2ff95a996a89389959ff Mon Sep 17 00:00:00 2001
From: Mathijs van Veluw <black.dex@gmail.com>
Date: Tue, 12 Nov 2024 15:48:39 +0100
Subject: [PATCH] Remove auth-request deletion (#5184)

2FA is needed to login even when using login-with-device.
If the user didn't saved the 2FA token they still need to provide this.
We deleted the auth-request after validation the request, but before 2FA was triggered.

Removing the deletion of this record from that point as it will get cleaned-up automatically anyways.

Signed-off-by: BlackDex <black.dex@gmail.com>
---
 src/api/identity.rs | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/src/api/identity.rs b/src/api/identity.rs
index 003e4d97..f2618164 100644
--- a/src/api/identity.rs
+++ b/src/api/identity.rs
@@ -190,9 +190,6 @@ async fn _password_login(
             )
         };
 
-        // Delete the request after we used it
-        auth_request.delete(conn).await?;
-
         if auth_request.user_uuid != user.uuid
             || !auth_request.approved.unwrap_or(false)
             || ip.ip.to_string() != auth_request.request_ip