Feat(Chore, Fix): Refractor, Half Baked Deletion + Admin Privilege

Refractor Codes into sub file/folders Admin can remove users'/members mfa/2fa, unlink account from oauth provider Admin can add/reset password Different Email (OIDC + Manual)-Same Account; (Block Linking and authorize if available)
2026-03-04 18:49:04 +05:45
parent ea1bacc794
commit 7cb522b590
63 changed files with 7896 additions and 10863 deletions
@@ -9,6 +9,9 @@ class DevelopmentConfig(BaseConfig):
    # Use environment variable like BaseConfig does
    SQLALCHEMY_ECHO = os.getenv("SQLALCHEMY_ECHO", "False").lower() == "true"
    SESSION_COOKIE_SECURE = False
+    # SameSite=None requires Secure=True — browsers silently drop the cookie otherwise.
+    # In dev (http://localhost) use Lax so the TOTP/WebAuthn session cookie is actually sent.
+    SESSION_COOKIE_SAMESITE = "Lax"

    # More verbose logging in development
    LOG_LEVEL = "DEBUG"