Closed DeltaO3 closed 3 weeks ago
Ay1tsMe
commented
1 month ago When creating a new account, it logs me into the new account but shows a previous session that was set up on another account. We would need some code that when logged into a new account, it prompts to create a brand new session rather than using the one in the cookies that was made with a different account.
DeltaO3
commented
1 month ago Should I work on this here, or is that in the scope of someone else?
Ay1tsMe
commented
4 weeks ago The bug is probably outside scope but still uncomfortable with approving yet. Need to ensure that there aren't any vulnerabilities when creating accounts.
DeltaO3
commented
4 weeks ago Vulnerabilities occur when logging in as a different account too (The cookie just isnt removed). I think livvy is now dealing with this?
Made 3 pages: Landing page for creating an account (/create_account) Forgot password page (/forgot_password) Reset password page for landing after forgot password (/reset_password)
minimal functionality without emails is there.