mirror of
https://github.com/element-hq/synapse
synced 2024-07-07 03:13:32 +00:00
Dangerous actions means deactivating an account, modifying an account password, or adding a 3PID. Other actions (deleting devices, uploading keys) can re-use the same UI auth session if ui_auth.session_timeout is configured.
2 lines
140 B
Plaintext
2 lines
140 B
Plaintext
Always require users to re-authenticate for dangerous operations: deactivating an account, modifying an account password, and adding 3PIDs.
|