docs: remove already existing docs in next branch

yaroslav8765 · yaroslav8765 · commit 28d3d048a19a · 2025-10-16T14:00:37.000+03:00
diff --git a/adminforth/documentation/docs/tutorial/07-Plugins/02-TwoFactorsAuth.md b/adminforth/documentation/docs/tutorial/07-Plugins/02-TwoFactorsAuth.md
@@ -206,243 +206,3 @@ plugins: [
 ],
 ...
 ```
-
-## Request 2FA on custom Actions
-
-You might want to to allow to call some custom critical/money related actions with additional 2FA approval. This eliminates risk that user cookies might be stolen by some virous/doorway software after login.
-
-To do it you first need to create custom component which will call `window.adminforthTwoFaModal.getCode(cb?)` frontend API exposed by this plugin. This is awaitable call wich shows 2FA popup and asks user to enter a code.
-
-```ts title='/custom/RequireTwoFaGate.vue'
-<template>
-  <div class="contents" @click.stop.prevent="onClick">
-    <slot />  <!-- render action defgault contend - button/icon -->
-  </div>
-</template>
-
-<script setup lang="ts">
-  const emit = defineEmits<{ (e: 'callAction', payload?: any): void }>();
-  const props = defineProps<{ disabled?: boolean; meta?: Record<string, any> }>();
-
-  async function onClick() {
-    if (props.disabled) return;
-  
-    const code = await window.adminforthTwoFaModal.getCode();  // this will ask user to enter code
-    emit('callAction', { code }); // then we pass this code to action (from fronted to backend)
-  }
-  </script>
-```
-
-Now we need to read code entered on fronted on backend and verify that is is valid and not expired, on backend action handler:
-
-```ts title='/adminuser.ts'
-options: {
-  actions: [
-    {
-      name: 'Auto submit',
-      icon: 'flowbite:play-solid',
-      allowed: () => true,
-      action: async ({ recordId, adminUser, adminforth, extra }) => {
-        //diff-add
-        const code = extra?.code
-        //diff-add
-        if (!code) {
-          //diff-add
-          return { ok: false, error: 'No TOTP code provided' };
-        //diff-add
-        }
-        //diff-add
-        const t2fa = adminforth.getPluginByClassName<TwoFactorsAuthPlugin>('TwoFactorsAuthPlugin');
-        //diff-add
-        const result = await t2fa.verify(code, { adminUser });
-
-        //diff-add
-        if (!result?.ok) {
-          //diff-add
-          return { ok: false, error: result?.error ?? 'TOTP code is invalid' };
-          //diff-add
-        }
-        //diff-add
-        await adminforth
-        //diff-add
-          .getPluginByClassName<AuditLogPlugin>('AuditLogPlugin')
-          //diff-add
-          .logCustomAction({
-            //diff-add
-            resourceId: 'aparts',
-            //diff-add
-            recordId: null,
-            //diff-add
-            actionId: 'visitedDashboard',
-            //diff-add
-            oldData: null,
-            //diff-add
-            data: { dashboard: 'main' },
-            //diff-add
-            user: adminUser,
-            //diff-add
-          });
-
-          //your critical action logic 
-      
-        return { ok: true, successMessage: 'Auto submitted' };
-      },
-      showIn: { showButton: true, showThreeDotsMenu: true, list: true },
-      //diff-add
-      customComponent: '@@/RequireTwoFaGate.vue',
-    },
-  ],
-}
-```
-
-## Request 2FA from custom components
-
-Imagine you have some button which does some API call
-
-```ts
-<template>
-  <Button @click="callAdminAPI">Call critical API</Button>
-</template>
-  
-
-<script setup lang="ts">
-import { callApi } from '@/utils';
-import adminforth from '@/adminforth';
-
-async function callAdminAPI() {
-  const code = await window.adminforthTwoFaModal.getCode();
-
-  const res = await callApi({
-    path: '/myCriticalAction',
-    method: 'POST',
-    body: { param: 1 },
-  });
-}
-</script>
-```
-
-On backend you have simple express api
-
-```ts
-app.post(`${ADMIN_BASE_URL}/myCriticalAction`,
-  admin.express.authorize(
-    async (req: any, res: any) => {
-
-      // ... your critical logic ...
-
-      return res.json({ ok: true, successMessage: 'Action executed' });
-    }
-  )
-);
-```
-
-You might want to protect this call with a TOTP code. To do it, we need to make this change
-
-```ts
-<template>
-  <Button @click="callAdminAPI">Call critical API</Button>
-</template>
-  
-
-<script setup lang="ts">
-import { callApi } from '@/utils';
-import adminforth from '@/adminforth';
-
-async function callAdminAPI() {
-  const code = await window.adminforthTwoFaModal.getCode();
-
-  // diff-remove
-  const res = await callApi({
-  // diff-remove
-    path: '/myCriticalAction',
-  // diff-remove
-    method: 'POST',
-  // diff-remove
-    body: { param: 1 },
-  // diff-remove
-  });
-
-  // diff-add
-  const res = await callApi({
-  // diff-add
-    path: '/myCriticalAction',
-  // diff-add
-    method: 'POST',
-  // diff-add
-    body: { param: 1, code: String(code) },
-  // diff-add
-  });
-
-  // diff-add
-  if (!res?.ok) {
-  // diff-add
-    adminforth.alert({ message: res.error, variant: 'danger' });
-  // diff-add
-  }
-}
-</script>
-
-```
-
-And oin API call we need to verify it:
-
-
-```ts
-app.post(`${ADMIN_BASE_URL}/myCriticalAction`,
-  admin.express.authorize(
-    async (req: any, res: any) => {
-
-      // diff-remove
-      // ... your critical logic ...
-
-      // diff-remove
-      return res.json({ ok: true, successMessage: 'Action executed' });
-
-      // diff-add
-      const { adminUser } = req;
-      // diff-add
-      const { param, code } = req.body ?? {};
-      // diff-add
-      const token = String(code ?? '').replace(/\D/g, '');
-      // diff-add
-      if (token.length !== 6) {
-      // diff-add
-        return res.status(401).json({ ok: false, error: 'TOTP must be 6 digits' });
-      // diff-add
-      }
-      // diff-add
-      const t2fa = admin.getPluginByClassName<TwoFactorsAuthPlugin>('TwoFactorsAuthPlugin');
-      // diff-add
-      const verifyRes = await t2fa.verify(token, { adminUser });
-      // diff-add
-      if (!('ok' in verifyRes)) {
-      // diff-add
-        return res.status(400).json({ ok: false, error: verifyRes.error || 'Wrong or expired OTP code' });
-      // diff-add
-      }
-      // diff-add
-      await admin.getPluginByClassName<AuditLogPlugin>('AuditLogPlugin').logCustomAction({
-      // diff-add
-        resourceId: 'aparts',
-      // diff-add
-        recordId: null,
-      // diff-add
-        actionId: 'myCriticalAction',
-      // diff-add
-        oldData: null,
-      // diff-add
-        data: { param },
-      // diff-add
-        user: adminUser,
-      // diff-add
-      });
-
-      // diff-add
-      // ... your critical logic ...
-
-      // diff-add
-      return res.json({ ok: true, successMessage: 'Action executed' });
-    }
-  )
-);
-```
