#15 Unique Key Generation on user Registration for password reset

Stängd
öppnade 4 år sedan av Uncled1023 · 3 kommentarer
Uncled1023 kommenterad 4 år sedan

This key would allow a user to generate a password reset, without giving any personal information (phone, secondary email, etc).

This key would allow a user to generate a password reset, without giving any personal information (phone, secondary email, etc).
Uncled1023 kommenterad 4 år sedan
Ägare

This has changed slightly with the addition of the ability for a user to add a PGP Public Key to their account. If that key is present, the server will use it to encrypt a temp token, and then the user would have to decrypt it using their private key and enter the token to reset their password.

This has changed slightly with the addition of the ability for a user to add a PGP Public Key to their account. If that key is present, the server will use it to encrypt a temp token, and then the user would have to decrypt it using their private key and enter the token to reset their password.
Uncled1023 kommenterad 3 år sedan
Ägare

User’s can now have recovery emails. Lower priority now.

User's can now have recovery emails. Lower priority now.
Uncled1023 kommenterad 3 år sedan
Ägare

Users can now create authentication keys, so no real need. Closing until further notice.

Users can now create authentication keys, so no real need. Closing until further notice.
Logga in för att delta i denna konversation.
Ingen Milsten
No Assignees
1 Deltagare
Förfallodatum

Inget förfallodatum satt.

Beroenden

This issue currently doesn't have any dependencies.

Laddar…
Avbryt
Spara
Det finns inget innehåll än.