fix: remove otp settings for service account app types

romanetar · romanetar · commit 5d5b218f617b · 2025-06-16T17:39:25.000+02:00
Signed-off-by: romanetar &lt;roman_ag@hotmail.com&gt;
diff --git a/app/Models/OAuth2/Client.php b/app/Models/OAuth2/Client.php
@@ -43,6 +43,12 @@
 #[ORM\Cache('NONSTRICT_READ_WRITE')] // Class Client
 class Client extends BaseEntity implements IClient
 {
+    private static array $allowed_otp_client_types = [
+        IClient::ApplicationType_JS_Client,
+        IClient::ApplicationType_Native,
+        IClient::ApplicationType_Web_App
+    ];
+
     /**
      * @var string
      */
@@ -1667,9 +1673,11 @@ public function isPasswordlessEnabled(): bool
 
     public function enablePasswordless(): void
     {
-        $this->otp_enabled = true;
-        $this->otp_length = intval(Config::get("otp.length"));
-        $this->otp_lifetime = intval(Config::get("otp.lifetime"));
+        if (in_array($this->getApplicationType(), self::$allowed_otp_client_types)) {
+            $this->otp_enabled = true;
+            $this->otp_length = intval(Config::get("otp.length"));
+            $this->otp_lifetime = intval(Config::get("otp.lifetime"));
+        }
     }
 
     public function disablePasswordless(): void
