HomePhabricator
Diffusion Phabricator 918f4ebcd82c

Fix a double-prompt for MFA when recovering a password account
918f4ebcd82c
Actions

Description

Fix a double-prompt for MFA when recovering a password account

Summary:
Depends on D19905. Ref T13222. In D19843, I refactored this stuff but $jump_into_hisec was dropped.

This is a hint to keep the upgraded session in hisec mode, which we need to do a password reset when using a recovery link. Without it, we double prompt you for MFA: first to upgrade to a full session, then to change your password.

Pass this into the engine properly to avoid the double-prompt.

Test Plan:

  • Used bin/auth recover to get a partial session with MFA enabled and a password provider.
  • Before: double MFA prompt.
  • After: session stays upgraded when it becomes full, no second prompt.

Reviewers: amckinley

Reviewed By: amckinley

Maniphest Tasks: T13222

Differential Revision: https://secure.phabricator.com/D19906

Details

Provenance
epriestleyAuthored on Dec 18 2018, 8:01 PM
epriestleyPushed on Dec 28 2018, 8:17 AM
Reviewer
amckinley
Differential Revision
D19906: Fix a double-prompt for MFA when recovering a password account
Parents
rPca39be60914b: Make partial sessions expire after 30 minutes, and do not extend them
Branches
Unknown
Tags
Unknown
Tasks
T13222: 2018 Week 48-51 Bonus Content
Build Status
Buildable 21446
Build 29203: Run Core Tests

Changes (1)

PathSize
src/
applications/
auth/
engine/

rP918f4ebcd82c

View Options

src/applications/auth/engine/PhabricatorAuthSessionEngine.php

Loading...
Phabricator ยท Built by Phacility