don't use QStringLiteral() but QString()

+

create an autotest when code is not QString()

Please add a better i18n : "2FA" is not know by everyone.

We need to investigate if there is a settings for inform us that 2FA is enabled on server.

I don't want to keep it visible all the time when it's not enabled.

const

const

We don't failed when we have an error ?

Perhaps we can use an other name as code, doubleAuthenticationFactorCode ?

if (mCode != code) {
....
}

Please add url where you find info how to generate it.

coding style QString &code

I changed it to You have enabled second factor authentication. Please enter the generated code or a backup code. which is the terminology used within Rocket.Chat's web UI and made the Label red and bold since it's an error message, including line wrapping in case the window is small. The PasswordLineEdit now says Two-factor authentication code or backup code to further clarify that it's not the same as the password.

We know that 2FA is required to login when login with just the password fails. And this is account-specific, not server-specific.

I added a DDPClient.LoginCodeRequired state to distinguish that case and also show a message explaining what happened.

Nice catch! We definitely should fail here!

It's indeed called code in the realtime API. But I changed all variables/ accessors to twoFactorAuthenticationCode.

Missing autotest file I seems in this patch