On year without an answer ; seems to be fixed or not reproducible anymore.

So there are different solutions:

• Agent-side browser extension (Typio Form Recovery for example)
• "Draft" function of OTRS 6 when we migrate to it (T187984), but this is only a workaround since there is no auto-save.
• Ask for the feature (long process) on OTRS Ideas

I am against this suggestion, our OTRS system contains sensitive to highly sensitive information on users. OTRS also hosts some Oversighters queues by the way.

True, whichever is easier. This is not an important issue though.

Now pending on T187984

QA is completed, fix is merged.

Scoopfinder triaged this task as Normal priority.

Hmm, do you plan to work on this task? (Asking as you prioritized this task.)

Understood @Keegan, but what about the domain name ? Can @wikimedia.org emails be redirected directly to another address? Doesn't it raise some issues in regards to the WMF privacy policy for example?

As this been cleared by WMF Legal ? There might be consequences to mix WMF domain and chapter ones like this, nah?

Hello @Chrissymad and thank you for your report. I usually use the "quick-close" button and then mark it as spam. I have to go back in the browser history and refresh the page in between and I understand that this can be annoying.

Fixed upstream, pending QA and waiting for a patch to be available.

@Archimea and @Jules78120 : Is the problem still current or was it solved in the meantime?

@jeremyb Is this still happening since the update to OTRS 5? Is it reproducible so that he could be reported upstream? I see that T76062 has been resolved since the upgrade.

Closing as resolved since we got no reply (since dec. 2016) or futher report.

I would suggest to close this, since it won't be done for security reasons and it is almost certain that this will not be corrected/changed in the future.

Since the last update to OTRS 5, is this bug still existing?

Reported upstream: https://bugs.otrs.org/show_bug.cgi?id=13687

@Josve05a : I did as mentioned, but still can login without 2FA or with a random 2FA. Did you try to check this too? (maybe I am the one doing sth wrong)

Hello @akosiaris and thank you for responding to my cry for help. :-)

Is there a way to push this ticket? OTRS contains very sensitive information (especially in oversighter queues) and security should be a priority.

Per @akosiaris: this seems to be how the software should behave and will probably not be accepted it taken upstream.

In T135433#2386256, @dr0ptp4kt wrote:

@Lydia_Pintscher with Catalan and Polish looking to land on Thursday, 23-June-2016, how would you suggest we go about enabling it across the board for the mobile web Wikipedias (except French, where consensus was against it) ? For example, if we were to enable it for all of the mobile web Wikipedias (except French) on one of the days in 5-July - 7-July would you be able to support the communication ahead of the prospective date and during its enablement (e.g., in case there are requests to turn it off in some Wikipedias)?