format

src/routes/+page.server.ts

@@ -5,7 +5,7 @@ import { get2FARedirect } from "$lib/server/2fa";
 import type { Actions, PageServerLoadEvent, RequestEvent } from "./$types";
 
 export function load(event: PageServerLoadEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/passkey/+page.server.ts

@@ -5,7 +5,7 @@ import { getUserPasskeyCredentials } from "$lib/server/webauthn";
 import type { RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/passkey/register/+page.server.ts

@@ -28,7 +28,7 @@ import type {
 import type { Actions, RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/reset/+page.server.ts

@@ -8,7 +8,7 @@ export const actions: Actions = {
 };
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/security-key/+page.server.ts

@@ -5,7 +5,7 @@ import { getUserSecurityKeyCredentials } from "$lib/server/webauthn";
 import type { RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/security-key/register/+page.server.ts

@@ -32,7 +32,7 @@ import type {
 import type { Actions, RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/setup/+page.server.ts

@@ -3,7 +3,7 @@ import { redirect } from "@sveltejs/kit";
 import type { RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/totp/+page.server.ts

@@ -6,7 +6,7 @@ import { setSessionAs2FAVerified } from "$lib/server/session";
 import type { Actions, RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/2fa/totp/setup/+page.server.ts

@@ -9,7 +9,7 @@ import { get2FARedirect } from "$lib/server/2fa";
 import type { Actions, RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/recovery-code/+page.server.ts

@@ -5,7 +5,7 @@ import { get2FARedirect } from "$lib/server/2fa";
 import type { RequestEvent } from "./$types";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (!event.locals.user.emailVerified) {

src/routes/settings/+page.server.ts

@@ -28,7 +28,7 @@ import type { Actions, RequestEvent } from "./$types";
 import type { SessionFlags } from "$lib/server/session";
 
 export async function load(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return redirect(302, "/login");
 	}
 	if (event.locals.user.registered2FA && !event.locals.session.twoFactorVerified) {
@@ -58,7 +58,7 @@ export const actions: Actions = {
 };
 
 async function updatePasswordAction(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return fail(401, {
 			password: {
 				message: "Not authenticated"
@@ -207,7 +207,7 @@ async function disconnectTOTPAction(event: RequestEvent) {
 }
 
 async function deletePasskeyAction(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return fail(401);
 	}
 	if (!event.locals.user.emailVerified) {
@@ -235,7 +235,7 @@ async function deletePasskeyAction(event: RequestEvent) {
 }
 
 async function deleteSecurityKeyAction(event: RequestEvent) {
-	if (event.locals.user === null || event.locals.session === null) {
+	if (event.locals.session === null || event.locals.user === null) {
 		return fail(401);
 	}
 	if (!event.locals.user.emailVerified) {