Closed
Bug 1200695
Opened 10 years ago
Closed 7 years ago
API-key-creation emails should reflect if the action was a result of auth delegation
Categories
(bugzilla.mozilla.org :: API, defect, P1)
Tracking
()
RESOLVED
FIXED
People
(Reporter: mcote, Assigned: imadueme)
References
Details
Attachments
(1 file)
The API-key creation emails are a little misleading when they are the result of logging into a third-party app via auth delegation. While we still want to let the user know that a key has been created, so that they can later revoke it if they want, the email doesn't make it clear that the key was created on their behalf. Specifically the line "IMPORTANT: If you did not request a new key, your Bugzilla account may have been compromised" is a bit confusing/alarming, since the key wasn't created as a direct result of a user action in Bugzilla.
These emails should instead contain something like
"An API key was created on your behalf for use by MozReview. You can view or update the key at the following URL: <url>. Revoking this key will prevent MozReview from performing any actions in Bugzilla on your behalf until you log in again."
|
||
Updated•10 years ago
|
Assignee: nobody → dylan
|
|
||
Updated•10 years ago
|
Priority: -- → P3
|
||
Updated•8 years ago
|
Component: General → API
|
|
||
Updated•7 years ago
|
Assignee: dylan → imadueme
Priority: P3 → P2
|
|
||
Updated•7 years ago
|
Priority: P2 → P1
|
Assignee | |
Updated•7 years ago
|
Status: NEW → ASSIGNED
|
|
Assignee | |
Comment 1•7 years ago
|
||
|
|
||
Updated•7 years ago
|
Attachment #8961197 -
Flags: review+
|
|
Assignee | |
Updated•7 years ago
|
Status: ASSIGNED → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•