From 99700fb198890a2dbc5efdb47dad02ba86957bcf Mon Sep 17 00:00:00 2001
From: crossxcell99 <crossxcell99@gmail.com>
Date: Tue, 18 Jul 2017 19:03:45 +0100
Subject: [PATCH] check if more than one role has 2fa enabled

---
 frappe/auth.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frappe/auth.py b/frappe/auth.py
index 50d7f04b93..2d159b8215 100644
--- a/frappe/auth.py
+++ b/frappe/auth.py
@@ -136,7 +136,7 @@ class LoginManager:
 														i in user_obj.roles))
 					two_factor_auth_user = len(frappe.db.sql(query))
 
-				if two_factor_auth_user == 1:
+				if two_factor_auth_user >= 1:
 
 					otp_secret = frappe.db.get_default(self.user + '_otpsecret')
 					verification_method = frappe.db.get_value('System Settings', None, 'two_factor_method')