Implement Well Known Password Change URL

Falco · December 6, 2018, 4:02pm

This looks a very simple and overall good little spec:

https://wicg.github.io/change-password-url/index.html

I think we should implement this as soon as some Password Manager (KeePass, LastPass, 1Password) implements it too.

Falco · January 31, 2019, 11:47pm

This was implemented by Twitter, GitHub and WordPress.

codinghorror · January 31, 2019, 11:50pm

Sure if it is simple, did you want to take it for 2.3?

Falco · May 4, 2019, 1:48am

This is done.

https://github.com/discourse/discourse/commit/51a6acb2af810b3ee29d8a38a88892d008c5ae2f

If iCloud keychain detects that you are re-using a password, it will show a sign. Hovering on that will have a link to this well-known URL, which will redirect you to the user account preferences in Discourse now.

There is a bug in the Apple implementation where they aren’t using the full URL (they redirect to just discourse.org instead of meta.discourse.org) but I assume they working on that (I contacted one of their engineers on Twitter but no response so far.

Topic		Replies	Views
Reset password URL is /password-reset Bug	14	2832	May 2, 2015
Personalized posts via username KEYWORD substitution Feature	3	603	March 9, 2017
Renaming discourse installation URL Installation	20	796	August 1, 2023
Is there an API for changing a password? Dev	6	4388	November 6, 2016
Discourse + Let's Encrypt w/ multiple hostnames Support	9	1298	February 17, 2020

Implement Well Known Password Change URL

Related topics