Feature #3956

Login by Email

Added by Benson M almost 10 years ago. Updated 5 months ago.

Status:NewStart date:2009-04-20
Priority:NormalDue date:
Assignee:-% Done:

0%

Category:Accounts / authentication
Target version:-
Resolution:

Description

I was looking at a phpBB MOD and thought this is something good any site with user authentication could use.
It lets you login with your email address, and disallows people registering new usernames that match the emails of previously registered users.

Screenshot 2019-02-04 at 08.51.14.png (16.4 KB) Marius BALTEANU, 2019-02-04 07:52


Related issues

Duplicated by Redmine - Feature #3208: Login by Email Closed 2009-04-20
Duplicated by Redmine - Feature #8186: Login/sign-in using either email address or username Closed 2011-04-19

History

#1 Updated by Felix Schäfer almost 9 years ago

  • Category set to Accounts / authentication
  • Assignee deleted (Chaoqun Zou)

#2 Updated by James Robertson over 8 years ago

+1 (see #8186 for more details)

#3 Updated by Robert Claypool about 7 years ago

I vote for this. It would be very useful.

#4 Updated by Latchezar Tzvetkoff over 6 years ago

Hi! We have a heavy-used Redmine install at our company and we've found out that most users get confused with those IRC'ish logins, so we needed to patch email login in.
NB: We maintain a patch set we apply after every update, but we think that most of the people will be happy to have email login provided in the official version.

Here is the diff against trunk:

$ svn diff
Index: app/models/user.rb
===================================================================
--- app/models/user.rb    (revision 11691)
+++ app/models/user.rb    (working copy)
@@ -160,7 +160,13 @@

     # Make sure no one can sign in with an empty login or password
     return nil if login.empty? || password.empty?
-    user = find_by_login(login)
+
+    if login.match(/\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\z/)
+      user = find_by_mail(login)
+    else
+      user = find_by_login(login)
+    end
+
     if user
       # user is already in local database
       return nil unless user.active?

#5 Updated by F Abu-Nimeh about 5 years ago

login using email is useful
+1

#6 Updated by Slawomir CALUCH almost 5 years ago

+1 I maintain a redmine for freelance and personal projects and friends/customers tend to try using their emails.

A few stopped connecting to redmine due to the unmet expectation.

I think this could be an option in `/settings?tab=authentication`

#7 Updated by Dimitris Vi almost 5 years ago

+1

for some people having to remember yet another username is not as trivial as it might sound, and when you use their e-mail as username it is ugly and can even mess with the issues list table's layout

#8 Updated by Pierre Maigne almost 5 years ago

+1

As far as I can see, it has very little impact,and I would not need to modify user.rb file at each update :)

#9 Updated by Robert Hailey about 4 years ago

+1

#10 Updated by Enziin System over 1 year ago

+10000

#11 Updated by Bernhard Rohloff 6 months ago

+1 This is so common these days and people don't have to remember another login.

#12 Updated by Marius BALTEANU 6 months ago

You can already achieve this by using the same email address as login username (attached a screenshot). IMO, current implementation is flexible enough to cover multiple use cases.

We also need to consider that an user can have multiple email addresses (which makes a possible implementation more complex).

#13 Updated by Bernhard Rohloff 6 months ago

Marius BALTEANU wrote:

You can already achieve this by using the same email address as login username (attached a screenshot). IMO, current implementation is flexible enough to cover multiple use cases.

If your email address changes you can't change your username which makes it somehow impractical. I also see it more like a second chance to get into your account if you have forgotten your username. It's not particularly a problem of mine but I have users who aren't using Redmine very often and tending to forget their username from time to time.

We also need to consider that an user can have multiple email addresses (which makes a possible implementation more complex).

I think it would be sufficient enough to only check the primary email address.

#14 Updated by Marius BALTEANU 6 months ago

Thanks Bernhard for clarification.

It should be enough to allow users to login by username or email address, right? without any other impact in application. I'm asking because first time when I read this, I understood that we should have a setting to choose between username and email.

#15 Updated by Bernhard Rohloff 5 months ago

Sorry for my late reply Marius, there seems to be an issue with notification mails on redmine.org.

Marius BALTEANU wrote:

It should be enough to allow users to login by username or email address, right? without any other impact in application.

Yes, that's exactly what I ment. You can find it very often these days for example on GitLab, GitHub, or also on Facebook or Amazon.
It's very convenient to get into your account even if you don't remember your username. I think plan.io has done it the same way, as I can remember.

Also available in: Atom PDF