From 6c4a53b333495326d99620b6305e873b63a087fc Mon Sep 17 00:00:00 2001
From: Aevann1 <randomname42029@gmail.com>
Date: Tue, 20 Dec 2022 18:56:44 +0200
Subject: [PATCH] separate 2fa error messages

---
 files/routes/settings.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/files/routes/settings.py b/files/routes/settings.py
index 9e2f4063f..0a2a05219 100644
--- a/files/routes/settings.py
+++ b/files/routes/settings.py
@@ -496,12 +496,12 @@ def settings_security_post(v):
 
 	if request.values.get("2fa_token"):
 		if not v.verifyPass(request.values.get('password')):
-			return render_template("settings/security.html", v=v, error="Invalid password or token.")
+			return render_template("settings/security.html", v=v, error="Invalid password.")
 
 		secret = request.values.get("2fa_secret")
 		x = pyotp.TOTP(secret)
 		if not x.verify(request.values.get("2fa_token"), valid_window=1):
-			return render_template("settings/security.html", v=v, error="Invalid password or token.")
+			return render_template("settings/security.html", v=v, error="Invalid token.")
 
 		v.mfa_secret = secret
 		g.db.add(v)
@@ -509,12 +509,12 @@ def settings_security_post(v):
 
 	if request.values.get("2fa_remove"):
 		if not v.verifyPass(request.values.get('password')):
-			return render_template("settings/security.html", v=v, error="Invalid password or token.")
+			return render_template("settings/security.html", v=v, error="Invalid password.")
 
 		token = request.values.get("2fa_remove")
 
 		if not v.validate_2fa(token):
-			return render_template("settings/security.html", v=v, error="Invalid password or token.")
+			return render_template("settings/security.html", v=v, error="Invalid token.")
 
 		v.mfa_secret = None
 		g.db.add(v)