Remove OTP_SECRET env configuration (#34748)

2025-05-22 05:33:21 -04:00 · 2025-05-22 05:33:21 -04:00 · 8d4ae81ab4
commit 8d4ae81ab4
parent 83dd09d4dc
2 changed files with 0 additions and 4 deletions
--- a/app/models/user.rb
+++ b/app/models/user.rb
@ -73,7 +73,6 @@ class User < ApplicationRecord
  ACTIVE_DURATION = ENV.fetch('USER_ACTIVE_DAYS', 7).to_i.days.freeze

  devise :two_factor_authenticatable,
-         otp_secret_encryption_key: Rails.configuration.x.otp_secret,
         otp_secret_length: 32

  devise :two_factor_backupable,
--- a/config/environments/development.rb
+++ b/config/environments/development.rb
@ -84,9 +84,6 @@ Rails.application.configure do
  # Otherwise, use letter_opener, which launches a browser window to view sent mail.
  config.action_mailer.delivery_method = ENV['HEROKU'] || ENV['VAGRANT'] || ENV['REMOTE_DEV'] ? :letter_opener_web : :letter_opener

-  # TODO: Remove once devise-two-factor data migration complete
-  config.x.otp_secret = ENV.fetch('OTP_SECRET', '1fc2b87989afa6351912abeebe31ffc5c476ead9bf8b3d74cbc4a302c7b69a45b40b1bbef3506ddad73e942e15ed5ca4b402bf9a66423626051104f4b5f05109')
-
  # Raise error when a before_action's only/except options reference missing actions.
  config.action_controller.raise_on_missing_callback_actions = true