Change the /api/login and /api/signup endpoints such that once the 2FA code is sent, that code is saved. After 5 minutes, the code should expire and no longer be valid. Only accept a login or signup if the 2FA code is correct.
Requires #6 to be completed
Change the /api/login and /api/signup endpoints such that once the 2FA code is sent, that code is saved. After 5 minutes, the code should expire and no longer be valid. Only accept a login or signup if the 2FA code is correct. Requires #6 to be completed