From 55815ecb81c1ab0dd6f9eafab40991bc674846cd Mon Sep 17 00:00:00 2001
From: romanetar <roman_ag@hotmail.com>
Date: Tue, 17 Jun 2025 17:05:04 +0200
Subject: [PATCH 1/2] feat: don't allow to emit otp when user isn't active

Signed-off-by: romanetar <roman_ag@hotmail.com>
---
 app/Http/Controllers/UserController.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/app/Http/Controllers/UserController.php b/app/Http/Controllers/UserController.php
index d40af7ac..e6e9f9c2 100644
--- a/app/Http/Controllers/UserController.php
+++ b/app/Http/Controllers/UserController.php
@@ -303,6 +303,11 @@ public function emitOTP()
                 throw new ValidationException("empty username.");
             }
 
+            $user = $this->auth_service->getUserByUsername($username);
+
+            if (!$user->isActive())
+                throw new ValidationException("user is not active.");
+
             $client = null;
 
             // check if we have a former oauth2 request

From b0b8c07594f35399f52e33e2f58280da0f30f4cb Mon Sep 17 00:00:00 2001
From: romanetar <roman_ag@hotmail.com>
Date: Mon, 14 Jul 2025 14:30:44 +0200
Subject: [PATCH 2/2] fix: user not active validation message tweak

Signed-off-by: romanetar <roman_ag@hotmail.com>
---
 app/Http/Controllers/UserController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Controllers/UserController.php b/app/Http/Controllers/UserController.php
index e6e9f9c2..e5764444 100644
--- a/app/Http/Controllers/UserController.php
+++ b/app/Http/Controllers/UserController.php
@@ -306,7 +306,7 @@ public function emitOTP()
             $user = $this->auth_service->getUserByUsername($username);
 
             if (!$user->isActive())
-                throw new ValidationException("user is not active.");
+                throw new ValidationException("User is not active.");
 
             $client = null;