ISSUE-72: block auth for disabled

tatevikg1 · tatevikg1 · commit d21e99d5ec8a · 2025-06-22T15:02:59.000+04:00
diff --git a/src/Domain/Identity/Service/SessionManager.php b/src/Domain/Identity/Service/SessionManager.php
@@ -29,6 +29,10 @@ public function createSession(string $loginName, string $password): Administrato
             throw new UnauthorizedHttpException('', 'Not authorized', null, 1500567098);
         }
 
+        if ($administrator->isDisabled()) {
+            throw new UnauthorizedHttpException('', 'Not authorized', null, 1500567099);
+        }
+
         $token = new AdministratorToken();
         $token->setAdministrator($administrator);
         $token->generateExpiry();
