Provide mechanism for user to report back that they did not request a password reset
Open, MediumPublic
Actions

Assigned To

None

Authored By

	• demon
	Aug 15 2016, 12:48 AM

Description

What it says on the tin. A nice little discussion about password resets on enwiki brought up the idea of being able to say "Yo I didn't ask for this password reset!" Facebook/Google/others do something the same.

The best use case I can come up with would be storing that data (in aggregate) so we could identify if there's an IP (most likely range) that is abusing password resets to try and get into accounts.

Might be a terrible idea, but I'm bored and it's a Sunday so here we are. Feel free to tell me I'm an idiot :P

Event Timeline

• demon created this task.Aug 15 2016, 12:48 AM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 15 2016, 12:48 AM

TerraCodes awarded a token.Aug 15 2016, 2:03 AM

TerraCodes subscribed.

Matthewrbowker subscribed.Aug 15 2016, 2:42 AM

Davey2010 subscribed.Aug 15 2016, 1:44 PM

Xaosflux subscribed.Aug 17 2016, 3:27 AM

Nabla subscribed.Sep 27 2017, 10:01 AM

Provide mechanism for user to report back that they did not request a password resetOpen, MediumPublicActions

Description

Event Timeline

Provide mechanism for user to report back that they did not request a password reset
Open, MediumPublic
Actions