Skip to content

Force password reset for existing unverified accounts on first SSO login#7149

Merged
Steve-Mcl merged 4 commits into
mainfrom
reset-password-unverifyed-sso-user
May 1, 2026
Merged

Force password reset for existing unverified accounts on first SSO login#7149
Steve-Mcl merged 4 commits into
mainfrom
reset-password-unverifyed-sso-user

Conversation

@hardillb
Copy link
Copy Markdown
Contributor

@hardillb hardillb commented Apr 28, 2026

fixes FlowFuse/security#113

Description

On first SSO loging if the email is not verified change the exising user password to a random string.

Related Issue(s)

FlowFuse/security#113

Checklist

  • I have read the contribution guidelines
  • Suitable unit/system level tests have been added and they pass
  • Documentation has been updated
    • Upgrade instructions
    • Configuration details
    • Concepts
  • Changes flowforge.yml?
    • Issue/PR raised on FlowFuse/helm to update ConfigMap Template
    • Issue/PR raised on FlowFuse/CloudProject to update values for Staging/Production
  • Link to Changelog Entry PR, or note why one is not needed.

Labels

  • Includes a DB migration? -> add the area:migration label

hardillb added 2 commits April 28, 2026 11:08
@hardillb
Force password reset for existing unverified accounts on first SSO login
4a5762f 
fixes FlowFuse/security#113

On first SSO loging if the email is not verified change the exising
user password to a random string.
@hardillb
Add empty line back
aa0d337
@hardillb hardillb requested a review from knolleary April 28, 2026 10:15
@hardillb hardillb self-assigned this Apr 28, 2026
@codecov
Copy link
Copy Markdown

codecov Bot commented Apr 28, 2026
edited
Loading

Codecov Report

❌ Patch coverage is 14.28571% with 6 lines in your changes missing coverage. Please review.
✅ Project coverage is 76.60%. Comparing base (cabf53f) to head (86b7ab8).
⚠️ Report is 5 commits behind head on main.

Files with missing lines Patch % Lines
forge/lib/userTeam.js 14.28% 6 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #7149      +/-   ##
==========================================
- Coverage   76.62%   76.60%   -0.03%     
==========================================
  Files         405      405              
  Lines       20566    20573       +7     
  Branches     4972     4973       +1     
==========================================
+ Hits        15758    15759       +1     
- Misses       4808     4814       +6
Flag Coverage Δ
backend 76.60% <14.28%> (-0.03%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@Steve-Mcl Steve-Mcl enabled auto-merge May 1, 2026 12:49
@Steve-Mcl Steve-Mcl merged commit 264fe16 into main May 1, 2026
51 of 58 checks passed
@Steve-Mcl Steve-Mcl deleted the reset-password-unverifyed-sso-user branch May 1, 2026 14:01
@dimitrieh dimitrieh mentioned this pull request May 6, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Steve-Mcl Steve-Mcl Steve-Mcl approved these changes

@knolleary knolleary Awaiting requested review from knolleary

Assignees

@hardillb hardillb

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hardillb @Steve-Mcl