Improve password confirmation in UI & API #19525
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sgiehl
added
c: Security
|
Will also implement some changes so we can fix #19169 |
sgiehl
changed the title
sgiehl
added
the
c: Usability
peterhashair
approved these changes
Jul 20, 2022
|
@tsteur would you mind having a quick look at that one? Just want to make sure the implementation with this new event is a solid solution for other login plugins to circumvent the issue, that they don't have a password the user can enter. |
tsteur
reviewed
Jul 20, 2022
…lugins to disable the password confirmation for users
justinvelluppillai
changed the title
This was referenced Oct 20, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description:
Our UI and API currently requires a password confirmation for certain (critical) actions. Currently that is done in each vue component and API in a similar way (but own implementations).
This PR introduces a new
PasswordConfirmationvue component, that can be easily reused in other components. This also helps to let them look similar across Matomo. All existing password confirmations were replaced with the new component.The password confirmation check in the API also was done in each class, but will now be available in each API, as it's part of the abstract class.
As confirming passwords introduced issues with other login plugins (that simply don't use passwords), a new event
Login.userRequiresPasswordConfirmationwas introduced, that allows to disable password confirmation for certain users.If it's disabled, the API won't perform password checks and in UI the password confirm will still be displayed, but with password input disabled and an enabled submit button, so it can be submitted without entering a password.
Additionally this PR introduces password confirmations for this critical actions:
On
Privacy > Anonymize datapage it is possible to change the settings for purging old log data and reports as well as directly purging such data. As this is a critical action, that can cause data loss, we will now require the password to be confirmed.fixes #19335
fixes #19169
fixes https://github.com/matomo-org/matomo-security/issues/209
Review