#15 Unique Key Generation on user Registration for password reset

Закрыто
открыта 4 лет назад Uncled1023 · комментариев: 3
Uncled1023 прокомментировал 4 лет назад

This key would allow a user to generate a password reset, without giving any personal information (phone, secondary email, etc).

This key would allow a user to generate a password reset, without giving any personal information (phone, secondary email, etc).
Uncled1023 прокомментировал 4 лет назад
Владелец

This has changed slightly with the addition of the ability for a user to add a PGP Public Key to their account. If that key is present, the server will use it to encrypt a temp token, and then the user would have to decrypt it using their private key and enter the token to reset their password.

This has changed slightly with the addition of the ability for a user to add a PGP Public Key to their account. If that key is present, the server will use it to encrypt a temp token, and then the user would have to decrypt it using their private key and enter the token to reset their password.
Uncled1023 прокомментировал 3 лет назад
Владелец

User’s can now have recovery emails. Lower priority now.

User's can now have recovery emails. Lower priority now.
Uncled1023 прокомментировал 3 лет назад
Владелец

Users can now create authentication keys, so no real need. Closing until further notice.

Users can now create authentication keys, so no real need. Closing until further notice.
Войдите, чтобы присоединиться к обсуждению.
Нет этапа
Нет назначенных лиц
1 участников
Срок выполнения

Срок выполнения не установлен.

Зависимости

В настоящее время эта задача не имеет зависимостей.

Загрузка…
Отмена
Сохранить
Пока нет содержимого.