Closed etipton closed 9 years ago
Yeah, that sounds like the cause. I'll take a look soon as I can't remember all the flows off the top of my head. Thanks!
To recreate the underlying issue:
Thanks for tracking this down! It has been fixed via b59a87c33dda3d4bb500804d26b0df0aa2e57678.
Awesome! Thanks so much.
Just tested in production -- working perfectly for me.
Excellent!
@ryanjohns just documenting this one in case you have any suggestions for the best fix --
MFA doesn't work if you have multiple logins and you try using the same browser for all of them... I think because of the way the code sets one permanent _client_id session cookie (maybe?)
I forked the repo and maybe one day I can dig in to try and fix :)
Meanwhile if you have any insight let me know.