return false;
}
- $cmd = "{$oathtool} --totp --base32 {$this->oath_key}";
+ $cmd = "{$oathtool} --totp --base32 " . escapeshellarg($this->oath_key);
$password = exec($cmd);
$s = DB_DataObject::Factory('core_setting');
$oath_require = $s->lookup('core', 'two_factor_authentication_requirement');
-
- if(!empty($oath_require)) {
- if($oath_require->val == 0) {
- $aur['require_oath'] = 0;
- }
- }
+ $aur['require_oath'] = $oath_require ? $oath_require->val : 0;
return $aur;
}