Impersonation, SSO / bypass for specific users

[phpsa]

would you accept a pull request that will extend the functionality to allow programatic choice on whether a user should be forced to 2fa?

[juliangums]

I'd love to see that too. Ideally, something like this

BreezyCore::make()
    ->enableTwoFactorAuthentication(
        force: true,
        excludedDrivers: ['github', 'saml2'],
        impersonationByPass: true,
    )

to chose which Socialite drivers you want to exclude. But obviously a simple closure returning a boolean value that is then checked for each user would be just as good like

BreezyCore::make()
    ->enableTwoFactorAuthentication(
        force: true,
        bypass: fn (User $user): bool => $user->id === 1,
    )

or simply allow a closure or boolean for the force parameter:

BreezyCore::make()
    ->enableTwoFactorAuthentication(
        force: fn (User $user): bool => $user->id === 1,
    )

That'd be awesome. @phpsa did you work on that already?

[juliangums]

Submitted a PR for this: #409

[juliangums]

You can then do

BreezyCore::make()
    ->enableTwoFactorAuthentication(
        force: fn (): bool => auth()->user()->id === 1,
    )