Open kmcculloch opened 7 years ago
kmcculloch
commented
7 years ago From @danielballan on February 1, 2017 3:57
Heh heh. Another option is to integrate with Google or GitHub and get password recovery (and, hey, two-factor auth) for free. But I guess that's a not starter for folks who are hoping to maintain some anonymity in this system.
kmcculloch
commented
7 years ago From @dcwalk on February 1, 2017 4:7
As much as I'm not a fan of another login, I'm equally less a fan of having to link generally throwaway accounts to something like google and github.
kmcculloch
commented
7 years ago From @b5 on February 1, 2017 14:12
Ugh same. This one's a big question. For now I think the best stand-in solution would be to build a password-reset feature for users with root permissions. and a force_reset flag on the accounts collection that auto-redirects to the change password page.
I'm happy to tackle this one. We may need to get creative in the future if root users don't want to be constantly dealing with this. Opinions welcome.
From @dcwalk on February 1, 2017 3:41
cough I'll just leave this here.
Copied from original issue: b5/pipeline#5