Canonical SSO provider

expose 2F fail counter in SSO admin

Bug #1055692 reported by Selene ToyKeeper on 2012-09-24

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	Canonical SSO provider	Confirmed	Undecided	Selene ToyKeeper	Canonical SSO provider public-rollout

Bug Description

When users fail their 2F login too many times (~20), SSO suspends their account. Then it requires an admin to help get their access back. This is fine.

However, the counter used to track failed 2F attempts isn't exposed in the admin UI, so users can get re-suspended immediately after being re-activated. This should probably be exposed so admins can reset it while re-activating the account.

The relevant variable is account.twofactor_attempts .

Tags:

Ricardo Kirkner (ricardokirkner) on 2012-10-04

tags:

added: twofactor

Ricardo Kirkner (ricardokirkner) on 2012-10-05

Changed in canonical-identity-provider:
milestone:	none → public-rollout

Selene ToyKeeper (toykeeper) on 2012-10-30

tags:

added: u1-support
removed: os-support

Julien Funk (jaboing) on 2013-01-16

tags:

added: u1-by-support

Joshua Hoover (joshuahoover) on 2013-01-17

tags:

removed: u1-support

a59ff5 (a59ff5a59ff5) on 2021-03-29

Changed in canonical-identity-provider:
status:	Confirmed → Fix Released

Colin Watson (cjwatson) on 2021-03-29

Changed in canonical-identity-provider:
status:	Fix Released → Confirmed

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.