Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
The recurring two-factor auth breaks a page request and forcefully redirects to the user profile which is annoying. I noticed this when clicking on a link to a drupal.org page from an outside source and the prompt for authentication broke this request.
Set to minor for now as this does not affect most users.
Comments
Comment #1
drummWhat sort of page request? Is this POSTing forms? I've been redirected to the page I was at before.
Comment #2
drummComment #3
dddave CreditAttribution: dddave commentedUgh. This happened to me while on vacation and I created the issue afterwards. I think I clicked a link to an announcement on twitter or the Planet App and when loading I got to the 2factor page and after finishing I was redirected to my profile. Sorry for my wonky memory.
Comment #4
dddave CreditAttribution: dddave commentedJust tested: When logging in on a drupal.org page the redirect works fine.
Comment #5
lizzjoyI'm reopening this issue because it is what happens to me. I'm logged in to ADO and when I navigate to a page on Drupal.org I am given the TFA login page. After I provide the code I'm taken to my user profile instead of the page that I was intending to visit.
Comment #6
MixologicThis happened to me when I clicked login on a comment - it took me to TFA, then to a 404 page..
Comment #7
dddave CreditAttribution: dddave commentedThis just happened upon clicking save after typing a long, well-thought out comments here: https://www.drupal.org/node/2639048#comment-10733054
Got redirected to my profile and the comments was lost. Had to type it again for better or worse.
How can this happen mid session?
Comment #8
dddave CreditAttribution: dddave commentedAnd why was I challenged to a TFA yet again?
Comment #9
drummMarking this as a duplicate since #2509824: TFA logged me out in the middle of posting long comment was opened slightly earlier and I think these are the same issue.
With #2659992: Make subsite registration and login optional now deployed, bakery will not log you into www.drupal.org. If you happen to have no Drupal session cookie, but do have a chocolate chip cookie, you will get a full login process instead of TFA. This might improve the situation, or at least help simplify things for future debugging.