Page MenuHomePhabricator

Passphrase: Visible to does not mean can see secret
Closed, DuplicatePublic

Description

When using Passphrase if a user removes "editable to" they can no longer see the secret.

{F182943}

Perhaps there should be a third category: "secret viewable by". Certainly I don't want all users to know some secrets exist at all, but more often i just want them changing it.

Event Timeline

rfergu raised the priority of this task from to Needs Triage.
rfergu updated the task description. (Show Details)
rfergu added a project: Passphrase.
rfergu added a subscriber: rfergu.
epriestley added a subscriber: epriestley.

I'm actually just going to merge this, this is pretty much the same as T4721. At a minimum, we'll document / make clear that "View" means "use in applications, but not see the secret". We might add a third permission.