Clean up feature flag for second factor reauthentication

[mitchellhenke]

🛠 Summary of changes

This was added in #8037 and has been enabled in the major environments for awhile, so this PR enables it by default and removes the configuration for it.

[aduth]

This is the only place this is assigned, but it's still referenced in a view? 🤔

identity-idp/app/views/mfa_confirmation/new.html.erb

Line 7 in 77311e9

<%= t('help_text.change_factor', factor: user_session[:factor_to_change]) %>

[mitchellhenke]

Yeah, this controller has been re-used in other ways where it's not changing factors and the change_factor does not exist. It's also not translated and the content should be re-written to be more generic.

[mitchellhenke]

https://gsa-tts.slack.com/archives/CEUQ9FXNJ/p1643994476402979 is a Slack thread that discusses it a bit (with an associated ticket that's linked above that line)

[aduth]

I'll un-icebox that ticket and get it in front of the team.

[aduth]

LGTM 👍

[aduth]

Out of curiosity, was the _2fa suffix added to help with clarity, or just something we added to avoid conflict with the original method name (i.e. we'd want to circle back and rename to drop it)?

Personally I think it's an improvement though 👍

[mitchellhenke]

It was added to differentiate from the previous method (which intended to require both password and 2FA).

I like the idea of keeping it as well for descriptiveness' sake.

[aduth]

Can this ticket be cancelled?

[mitchellhenke]

I think so, yeah. I can do that.

[zachmargolis]

The part about the untranslated string can be cancelled, but does the copy on the page still say "sign in with your phone" for all other MFAs? If so then that part of the ticket should stay

[mitchellhenke]

My hope is to remove this page since it'll be unused after this PR

[zachmargolis]

ah right!!! thx

[mitchellhenke]

#8722