Added sending of 2fa code email on sign in

ghost/core/core/server/services/auth/session/middleware.js

@@ -11,6 +11,7 @@ function SessionMiddleware({sessionService}) {
                 if (isVerified) {
                     res.sendStatus(201);
                 } else {
+                    await sessionService.sendAuthCodeToUser(req, res);
                     throw new errors.NoPermissionError({
                         code: '2FA_TOKEN_REQUIRED',
                         errorType: 'Needs2FAError',

ghost/core/test/unit/server/services/auth/session/middleware.test.js

@@ -87,7 +87,21 @@ describe('Session Service', function () {
             req.ip = '127.0.0.1';
             req.user = models.User.forge({id: 23});
 
-            sessionMiddleware.createSession(req, res, (err) => {
+            const middleware = SessionMiddlware({
+                sessionService: {
+                    createSessionForUser: function () {
+                        return Promise.resolve();
+                    },
+                    isVerifiedSession: function () {
+                        return Promise.resolve(false);
+                    },
+                    sendAuthCodeToUser: function () {
+                        return Promise.resolve();
+                    }
+                }
+            });
+
+            middleware.createSession(req, res, (err) => {
                 should.equal(err.statusCode, 403);
                 should.equal(err.code, '2FA_TOKEN_REQUIRED');
                 done();

ghost/session-service/lib/session-service.js

@@ -147,7 +147,7 @@ module.exports = function createSessionService({
     async function sendAuthCodeToUser(req, res) {
         const token = await generateAuthCodeForUser(req, res);
         const user = await getUserForSession(req, res);
-        if(!user) {
+        if (!user) {
             throw new BadRequestError({
                 message: 'Could not fetch user from the session.'
             });