dkarkanas
commented
3 weeks ago This fixes the brute force control for otp in device authentcation. The proper solution requires a SecurityStamp to UserDevice table, and use this stamp to the otp purpose
We need to differentiate between the 4-pin and biometric purposes during device registration.
Users completing the process in less than 30 seconds are encountering the error:
Last token has not expired yet. Please wait a few seconds and try again.