LG-10441: Dont allow Skipping when Webauthn Platform

[mdiarra3]

🎫 Ticket

Dont allow Skip when second MFA is required for platform auth

🛠 Summary of changes

This makes it so when users select Platform Auth as their only option, they arent able to hit continue on the second mfa page until they select an additional option.

👀 Screenshots

Now when u dont select an option you get below.

[jc-gsa]

There's an additional flow that does not appear to be handled, perhaps this could be another ticket. If the user registers, confirms their account, then adds webauthn platform and subsequently closes their browser they'll have a valid account with 1 auth method. They can then login successfully and will not be requested to add another method, thereby "skipping".

[aduth]

There's an additional flow that does not appear to be handled, perhaps this could be another ticket. If the user registers, confirms their account, then adds webauthn platform and subsequently closes their browser they'll have a valid account with 1 auth method. They can then login successfully and will not be requested to add another method, thereby "skipping".

Yeah, that's technically possible. I recall it coming up in a team discussion and we'd decided this is more a restriction in the user's interest of the happy path flow, but that it didn't need to be lock-tight. Or at least that enforcing it universally didn't seem to have enough value for the effort involved. It's worth surfacing in a team discussion if you think we should revisit this, though I'd agree it'd be a separate ticket.

[aduth]

LGTM 👍