Page MenuHomePhabricator
Differential D20673

Record account recovery email links in the user activity log and make the mail message reference the log
ClosedPublic
Actions

Authored by epriestley on Jul 19 2019, 10:05 PM.
Tags
None
Referenced Files
F18842002: D20673.id.diff
Tue, Oct 28, 12:46 PM
F18805748: D20673.diff
Sat, Oct 18, 4:20 PM
F18761568: D20673.id.diff
Mon, Oct 6, 3:11 PM
F18756847: D20673.diff
Sun, Oct 5, 1:56 PM
F18678365: D20673.id.diff
Sep 25 2025, 10:36 PM
F18678125: D20673.diff
Sep 25 2025, 10:23 PM
F18578293: D20673.id.diff
Sep 10 2025, 9:36 PM
F18567167: D20673.id.diff
Sep 9 2025, 3:34 PM
View All Files
Subscribers
None

Details

Reviewers
amckinley
Maniphest Tasks
T13343: Make "Send a login link to your email address" email include why it was sent to avoid confusion
Commits
rP60db658d52c4: Record account recovery email links in the user activity log and make the mail…
Summary

Depends on D20672. Ref T13343. When a user requests an account access link via email:

  • log it in the activity log; and
  • reference the log in the mail.

This makes it easier to ban users misusing the feature, provided they're coming from a single remote address, and takes a few steps down the pathway toward a button in the mail that users can click to report the action, suspend account recovery for their account, etc.

Test Plan
  • Requested an email recovery link.
  • Saw request appear in the user activity log.
  • Saw a reference to the log entry in the mail footer.

Diff Detail

Repository
rP Phabricator
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

Diff 49319

View Options

src/__phutil_library_map__.php

Loading...
View Options

src/applications/auth/controller/PhabricatorEmailLoginController.php

Loading...
View Options

src/applications/people/mail/PhabricatorPeopleMailEngine.php

Loading...
View Options

src/applications/people/userlog/PhabricatorEmailLoginUserLogType.php

Loading...
Phabricator · Built by Phacility