Closed (fixed)
Project:
Login History
Version:
8.x-1.x-dev
Component:
Code
Priority:
Critical
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
2 May 2017 at 01:26 UTC
Updated:
2 Apr 2019 at 22:29 UTC
Jump to comment: Most recent, Most recent file
Comments
Comment #2
bkosborneComment #3
prashant.c@bkosborne
In my opinion you are correct but let the module author/maintainer review it.
Comment #4
bkosborneBumping to critical. This could really cause confusion if someone is investigating an unauthorized login.
Comment #5
gregglesTo make this easy to review, can you point to the file in core that defines this route?
Comment #6
bkosborneIt's in user.routing.yml, part of the user module. That's the route that the user will actually be on when they use the password reset.
Comment #7
gregglesMakes sense to me - thanks!