Project

General

Profile

Actions

Feature #38265

open

When the user login is via 'autologin' cookiee, then the password change, and 2fa setting flow should not get triggered

Added by Gaurav Bansal over 1 year ago. Updated 4 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Accounts / authentication
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Resolution:

Description

Hi All,

We have added the flow of insert into the tokens table, with autologin as the cookiee. The flow is working properly if the user settings are no change password after login, 2fa disabled. But if password change is set, or 2fa is enabled, then those flow get triggered as soon as we reirect after login. Ideally if the login is via autologin flow, then these should not get triggered. So either I am doing something wrong, or this can be added as a functionality, if this is something which makes sense to the core team members.

Actions #1

Updated by Go MAEDA 4 months ago

Does the "flow" mean some code you added to the Redmine, and what you mean is that the code does not work as expected when the two-factor authentication is enabled?

Actions

Also available in: Atom PDF