Page MenuHomePhabricator
Differential D18790

Ask users to sign Legalpad documents before requiring they enroll in MFA
ClosedPublic
Actions

Authored by epriestley on Nov 28 2017, 1:05 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, May 1, 1:04 AM
Unknown Object (File)
Mar 27 2024, 5:38 PM
Unknown Object (File)
Mar 4 2024, 9:01 PM
Unknown Object (File)
Feb 28 2024, 4:00 PM
Unknown Object (File)
Jan 22 2024, 9:47 AM
Unknown Object (File)
Jan 22 2024, 8:25 AM
Unknown Object (File)
Dec 31 2023, 7:49 PM
Unknown Object (File)
Dec 27 2023, 8:40 PM
View All 53 Files
Subscribers
None

Details

Reviewers
amckinley
Maniphest Tasks
T13024: Fix various session initialization order issues
Commits
rPc7718d3a2126: Ask users to sign Legalpad documents before requiring they enroll in MFA
Summary

Depends on D18789. Ref T13024. See PHI223. Currently, if security.require-multi-factor-auth and Legalpad "Signature Required" documents are both set, it's not possible to survive account registration, since MFA is requiried to sign and signatures are required to add MFA.

Instead, check for signatures before requiring MFA enrollment. This makes logical sense, since it's silly to add MFA if you don't agree to a Terms of Service or whatever.

(Note that if you already have MFA, we prompt for that first, before either of these steps, which also makes sense.)

Test Plan

Configured security.require-multi-factor-auth. Added a signature-required document. Loaded a page as a new user. Went through signature workflow, then through the MFA enrollment workflow.

Diff Detail

Repository
rP Phabricator
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
src/
applications/
base/
controller/
19 lines

Diff 45099

View Options

src/applications/base/controller/PhabricatorController.php

Loading...
Phabricator · Built by Phacility