HomePhabricator
Diffusion Phabricator d8d4efe89e85

Require MFA to edit MFA providers
d8d4efe89e85
Actions

Description

Require MFA to edit MFA providers

Summary: Depends on D20037. Ref T13222. Ref T7667. Although administrators can now disable MFA from the web UI, at least require that they survive MFA gates to do so. T7667 (bin/auth lock) should provide a sturdier approach here in the long term.

Test Plan: Created and edited MFA providers, was prompted for MFA.

Reviewers: amckinley

Reviewed By: amckinley

Maniphest Tasks: T13222, T7667

Differential Revision: https://secure.phabricator.com/D20038

Details

Provenance
epriestleyAuthored on Jan 25 2019, 6:42 PM
epriestleyPushed on Jan 28 2019, 5:44 PM
Reviewer
amckinley
Differential Revision
D20038: Require MFA to edit MFA providers
Parents
rP44a0b3e83d90: Replace "Show Secret" in Passphrase with one-shot MFA
Branches
Unknown
Tags
Unknown
Tasks
T7667: Provide `auth lock` and `auth unlock` to restrict authentication provider management to the CLI
T13222: 2018 Week 48-51 Bonus Content
Build Status
Buildable 21721
Build 29633: Run Core Tests

Changes (3)

PathSize
src/
applications/
auth/
engine/
PhabricatorAuthFactorProviderMFAEngine.php
PhabricatorAuthContactNumberMFAEngine.php
storage/

rPd8d4efe89e85

View Options

src/__phutil_library_map__.php

Loading...
View Options

src/applications/auth/engine/PhabricatorAuthFactorProviderMFAEngine.php

Loading...
View Options

src/applications/auth/storage/PhabricatorAuthFactorProvider.php

Loading...
Phabricator ยท Built by Phacility