Use OTP token ID (or null if no ID is set) as mapping key instead the token type to allow users with use more than one token of the same type.
Previously, the last token found overwrote all previously found tokens of the same type, so that usually only the most recent token could be used via RADIUS. Now the OTP code is verified against all existing tokens.
Use OTP token ID (or null if no ID is set) as mapping key instead the token type to allow users with use more than one token of the same type.
Previously, the last token found overwrote all previously found tokens of the same type, so that usually only the most recent token could be used via RADIUS. Now the OTP code is verified against all existing tokens.