Users do not need to be forced to change their password

Bug #873023 reported by Māris Fogels on 2011-10-12
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
awstrial
High
Unassigned

Bug Description

We no longer need to force password-enabled users to change their password after login. The site uses SSL encryption to serve the page that displays the randomly generated password to the user.

There should be no problem removing the password change step because this is a limited-time trial, meant for a single user, the password is random, and the password is sent to the user via an encrypted channel.

Resolving this issue would also make the password-enabled login *much* smoother and simpler. It would eliminate the difficult task of communicating complex login steps to the user.

Related branches

Māris Fogels (mars) on 2011-10-12
description: updated
Changed in awstrial:
status: Triaged → Fix Committed
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers