github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-23 02:19:27 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
5935148bd8
discourse/spec/system/user_page
History
Penar Musaraj 974b3a2a6f
DEV: Do not require session confirmation for new users (#24799) 
When making sensitive changes to an account (adding 2FA or passkeys), we
require users to confirm their password. This is to prevent an attacker
from adding 2FA to an account they have access to.

However, on newly created accounts, we should not require this, it's an
extra step and it doesn't provide extra security (since the account was
just created). This commit makes it so that we don't require session
confirmation for accounts created less than 5 minutes ago.
2024-02-15 12:29:16 -05:00
..
staff_info_spec.rb DEV: Allow fab! without block (#24314) 2023-11-09 16:47:59 -06:00
user_notifications_spec.rb DEV: Plugin-api methods for user-notifications route customizations (#24873) 2023-12-13 15:15:42 -06:00
user_preferences_account_spec.rb FIX: Serialize uploaded_avatars_allowed_groups check on current user (#25515) 2024-02-02 09:32:45 +10:00
user_preferences_interface_spec.rb FIX: Serialize uploaded_avatars_allowed_groups check on current user (#25515) 2024-02-02 09:32:45 +10:00
user_preferences_navigation_spec.rb FIX: Serialize uploaded_avatars_allowed_groups check on current user (#25515) 2024-02-02 09:32:45 +10:00
user_preferences_security_spec.rb DEV: Do not require session confirmation for new users (#24799) 2024-02-15 12:29:16 -05:00
user_profile_info_panel_spec.rb FIX: Render user profile trust level name for TL0 (#22740) 2023-07-21 15:16:34 +08:00