Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

When a user changes a password (or resets password), inform user that token_auth will change #9833

Closed
alxndr-w opened this issue Feb 23, 2016 · 2 comments
Closed

When a user changes a password (or resets password), inform user that token_auth will change #9833

alxndr-w opened this issue Feb 23, 2016 · 2 comments
Labels
c: Usability For issues that let users achieve a defined goal more effectively or efficiently. Enhancement For new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc. Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical.
Milestone
2.16.1

Comments

@alxndr-w
Copy link

Piwik stopped archiving a few days ago and I didn't know why until i found this thread:

https://forum.piwik.org/t/web-cron-archiving-error/15971
"woops. It appears I changed my password recently, thereby changing the token_auth. I'll go cry in shame somewhere."

Advanced users may know that a new password also causes a new token. But people new to piwik should be told about it. For example via password changing e-mail or after the password changing dialogue.
@tsteur
Copy link
Member

tsteur commented Feb 24, 2016

Very good point. We definitely need to mention this as it is not "normal" that token changes when you change password. It will break all kinda API access and will cause other apps and integrations etc to fail.

Also related to this is : #6559 which we will hopefully tackle in Piwik 3. It's very much needed.

@tsteur tsteur added Enhancement For new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc. c: Usability For issues that let users achieve a defined goal more effectively or efficiently. Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical. labels Feb 24, 2016
@alxndr-w
Copy link
Author

It looks like you'll be informed if you change the password in piwik backend but not if you use the password reset option.

@sgiehl sgiehl mentioned this issue Mar 5, 2016
Merged
sgiehl added a commit that referenced this issue Mar 6, 2016
@sgiehl
refs #9833 - Improve password reset confirmation mail text to inform …
3a4dce0 
…user that token_auth will change aswell
@tsteur tsteur closed this as completed Mar 6, 2016
@tsteur tsteur added this to the 2.16.1 milestone Mar 6, 2016
@mattab mattab changed the title inform user that a new password will change API-token and may break webcrons etc. When a user changes a password (or resets password), inform user that token_auth will change Mar 31, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
c: Usability For issues that let users achieve a defined goal more effectively or efficiently. Enhancement For new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc. Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical.
Projects
None yet
Milestone
2.16.1
Development

No branches or pull requests
2 participants
@tsteur @alxndr-w