Allow users to invalidate temporary password
Closed, DuplicatePublicFeature
Actions

Assigned To

None

Authored By

	Vituzzu
	Apr 11 2014, 9:21 PM

Description

It would be useful to allow users to invalidate temporary password sent by "account details" feature from a second link within the same email. It's a common feature for many CMSes which doesn't seem to have any drawback.

Version: unspecified
Severity: enhancement

Details

Reference: bz63837

Event Timeline

• bzimport raised the priority of this task from to Lowest.Nov 22 2014, 3:17 AM

• bzimport added a project: MediaWiki-Email.

• bzimport set Reference to bz63837.

• bzimport added a subscriber: Unknown Object (MLST).

Vituzzu created this task.Apr 11 2014, 9:21 PM

Why would it be useful?

Vituzzu: Why would it be useful? What's the usecase / intention?

Unfortunately closing this report as no further information has been provided.

Vituzzu@it.wiki: Please feel free to reopen this report if you can provide the information asked for. Thanks!

Use case is to make the temp. password invalid in case the email might have been sniffed on. (This is still dangerous as the user has to react faster than the one sniffing the emails, but depending on how the surveillance works it might take some time till the email containing the data got processed)

Change 147496 had a related patch set uploaded by Hoo man:
Add "cancel this" link to password reset emails

https://gerrit.wikimedia.org/r/147496

Aklapper changed the subtype of this task from "Task" to "Feature Request".Feb 4 2022, 11:14 AM

Aklapper removed a subscriber: • wikibugs-l-list.

Xaosflux closed this task as a duplicate of T61736: password reset mail should have a "cancel this" link.Jul 8 2022, 3:07 PM

Allow users to invalidate temporary passwordClosed, DuplicatePublicFeatureActions

Description

Details

Event Timeline

Allow users to invalidate temporary password
Closed, DuplicatePublicFeature
Actions