2FA does not work #32
Description
Main reason I still haven't reimplemented it is that it obviously can't work the way it did without a queue server to strand people on while they are being verified.
An alternative solution is to just always deny login, unless when explicitly authorized via website menu. That's probably what we'll go for in the immediate future.