From 749a932663c4894fb5a79336f477b474e413e160 Mon Sep 17 00:00:00 2001
From: Derrick Hammer <derrick@derrickhammer.com>
Date: Wed, 13 Mar 2024 17:35:26 -0400
Subject: [PATCH] fix: give login a dedicated authMiddleware instance

---
 api/account/account.go | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/api/account/account.go b/api/account/account.go
index 5c46c00..ce8aadd 100644
--- a/api/account/account.go
+++ b/api/account/account.go
@@ -272,6 +272,13 @@ func (a AccountAPI) ping(jc jape.Context) {
 
 func (a AccountAPI) Routes() (*httprouter.Router, error) {
 	authMw2fa := authMiddleware(middleware.AuthMiddlewareOptions{
+		Identity: a.identity,
+		Accounts: a.accounts,
+		Config:   a.config,
+		Purpose:  account.JWTPurpose2FA,
+	})
+
+	loginAuthMw2fa := authMiddleware(middleware.AuthMiddlewareOptions{
 		Identity:     a.identity,
 		Accounts:     a.accounts,
 		Config:       a.config,
@@ -288,7 +295,7 @@ func (a AccountAPI) Routes() (*httprouter.Router, error) {
 
 	routes := map[string]jape.Handler{
 		"POST /api/auth/ping":                   middleware.ApplyMiddlewares(a.ping, authMw2fa, middleware.ProxyMiddleware),
-		"POST /api/auth/login":                  middleware.ApplyMiddlewares(a.login, authMw2fa, middleware.ProxyMiddleware),
+		"POST /api/auth/login":                  middleware.ApplyMiddlewares(a.login, loginAuthMw2fa, middleware.ProxyMiddleware),
 		"POST /api/auth/register":               middleware.ApplyMiddlewares(a.register, middleware.ProxyMiddleware),
 		"POST /api/auth/verify-email":           middleware.ApplyMiddlewares(a.verifyEmail, middleware.ProxyMiddleware),
 		"GET /api/auth/otp/generate":            middleware.ApplyMiddlewares(a.otpGenerate, authMw, middleware.ProxyMiddleware),