Page MenuHomePhabricator
Create Task
Maniphest T229529

iOS13 [Feature] - Handle .well-known/change-password redirect
Closed, DeclinedPublicSpike
Actions

Description

Not sure if this affects the app but it will with web.

In Safari 13 and iOS13 - "...when a user signs into a website and Safari notices that the password they just used was weak, Safari will prompt the user to go and visit the website to change the password. If the user accepts Safari's offer, they'll be taken over to Settings where they can change their password."

Need to add a redirect to our change password screen on the server at ".../.well-known/change-password", then the user will be taken directly to the change password screen.

https://developer.apple.com/videos/play/wwdc2019/516/?time=622

Related Objects
Search...

StatusSubtypeAssignedTask
 ResolvedSpikeTsevenerT225651 Investigate changes in iOS 13
DeclinedSpikeNoneT229529 iOS13 [Feature] - Handle .well-known/change-password redirect

Event Timeline

Tsevener created this task.Aug 1 2019, 2:36 AM
Tsevener updated the task description. (Show Details)
Tsevener removed Tsevener as the assignee of this task.Aug 1 2019, 9:39 PM
JMinor triaged this task as Low priority.Aug 5 2019, 6:49 PM
LGoto moved this task from Needs Triage to Engineering Backlog on the Wikipedia-iOS-App-Backlog board.Aug 5 2019, 6:50 PM
JMinor subscribed.Aug 5 2019, 6:51 PM

Something to test in app on iOS 13. Looks like it might only apply to web.

JMinor moved this task from Tasks from Product Backlog to Needs Acceptance Criteria on the iOS-app-v6.4-Seamonkey-On-A-Hoverboard board.Aug 26 2019, 6:49 PM
LGoto removed a project: iOS-app-v6.4-Seamonkey-On-A-Hoverboard.Sep 5 2019, 8:20 PM
Tgr subscribed.Sep 24 2020, 10:39 PM

Is this the same as T263800: Implement .well-known/change-password redirect on Wikimedia sites? It was tagged as an iOS engineering task so I wasn't sure.

Tsevener added a comment.Oct 5 2020, 3:19 PM

@Tgr Yep, looks like it. Originally there were thoughts that there may be an app-side component to this but the WWDC video explicitly says when you log in on a website. I tried testing on device to be sure but I can't get around our own strong password requirements. I think this iOS task can be closed.

LGoto closed this task as Declined.Feb 2 2021, 11:39 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL