Report a bug in the forum
Comments
-
Ah ok. When I tried updating my email address on the forum, I got prompted to insert my password again due to the elevated action. However, I simply clicked ok/continue without entering my password and the system processed my request without having the need to actually enter my password in the password field prompted.
Thanks.
0 -
Yes, I got the email and confirmed the change. I’m using my new email. 👍🏼
0 -
@Ben you're welcome. I just tried again and it worked. I'm using the latest version of Firefox. I tried doing the same using an iPhone and there it didn't work, it kept asking for the password. So, that must be a failure in the validation, at least in Firefox and perhaps in some other browsers.
Glad to help...
0 -
Hey @demaier
In speaking with Vanilla it turns out that there was a timer established when logging in. As long as you made the change within an established window, it wasn't necessary to re-authenticate, despite the prompt. I pointed out that the disconnect between being prompted but not actually being required to input the correct password was perhaps something they could consider addressing. In their next update they plan to remove the timer and make the password required for sensitive actions regardless of how long ago you last authenticated.
Thank you again for reporting this to us. :)
Ben
0 -
That’s great Ben. Thanks for getting back to me on this.
You’re welcome and have a good one!0 -
On behalf of Ben, you are very welcome :)
0
