Closed leofeyer closed 6 years ago
Do we need to be fully authenticated for the password change module? It requires to enter the current password anyway.
That's a very good point. And since it also requires to enter the password to close an account, we might not need the IS_AUTHENTICATED_FULLY
check at all.
How does this work with two factor authentication?
How does this work with two factor authentication?
We don't have two-factor authentication in the front end (yet)
This PR implements #1273.