Open ScopeyNZ opened 5 years ago
MFA added (future scope in another module - this needs some form of API)
An example of a user defined point where you'd notify of a change - we can do this with an extension point e.g. $this->extend('updateNotifiableChanges', ...)
then check an object for changes before notifying
Just noticed that changing your password can already email the user to let them know, just not in dev environments which is why we probably haven't noticed it before. CWP enables this by default though for example:
https://github.com/silverstripe/silverstripe-framework/blob/4.3.0/src/Security/Member.php#L903-L922
Description
It would be good for users to be informed when details about their user record changes. This would be considered a security enhancement as it reduces the discovery time on breaches where a user may have their details changed.
Some particular points of interest:
/cc @clarkepaul