OXDEV-9078 Add todos

Sieg · Sieg · commit 50067a574699 · 2026-04-03T12:05:08.000+03:00
diff --git a/src/Authentication/TwoFactorAuth/Service/TwoFAUserService.php b/src/Authentication/TwoFactorAuth/Service/TwoFAUserService.php
@@ -15,6 +15,9 @@
 use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Infrastructure\Factory\UserModelFactoryInterface;
 use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Settings\TwoFASettingsInterface;
 
+/**
+ * todo-high: challenge the idea - session part should go to the separate login state service
+ */
 class TwoFAUserService implements TwoFAUserServiceInterface
 {
     public const USER_SESSION_KEY = 'pending_authorized_user';
@@ -45,6 +48,7 @@ public function loginUser(string $userId): void
     {
         $this->session->remove(self::USER_SESSION_KEY);
 
+        // todo-high: looks like it can go to the infrastructure layer
         $user = $this->userFactory->create();
         $user->load($userId);
 

Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,9 @@`
`15`	`15`	`use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Infrastructure\Factory\UserModelFactoryInterface;`
`16`	`16`	`use OxidEsales\SecurityModule\Authentication\TwoFactorAuth\Settings\TwoFASettingsInterface;`
`17`	`17`
	`18`	`+/**`
	`19`	`+ * todo-high: challenge the idea - session part should go to the separate login state service`
	`20`	`+ */`
`18`	`21`	`class TwoFAUserService implements TwoFAUserServiceInterface`
`19`	`22`	`{`
`20`	`23`	`public const USER_SESSION_KEY = 'pending_authorized_user';`
`@@ -45,6 +48,7 @@ public function loginUser(string $userId): void`
`45`	`48`	`{`
`46`	`49`	`$this->session->remove(self::USER_SESSION_KEY);`
`47`	`50`
	`51`	`+ // todo-high: looks like it can go to the infrastructure layer`
`48`	`52`	`$user = $this->userFactory->create();`
`49`	`53`	`$user->load($userId);`
`50`	`54`