[jira] [Created] (SYNCOPE-1887) Enduser: require re-authentication for sensitive features

Jira Tue, 27 May 2025 03:09:04 -0700

Francesco Chicchiriccò created SYNCOPE-1887:
-----------------------------------------------


             Summary: Enduser: require re-authentication for sensitive features
                 Key: SYNCOPE-1887
                 URL: https://issues.apache.org/jira/browse/SYNCOPE-1887
             Project: Syncope
          Issue Type: Improvement
          Components: enduser
            Reporter: Francesco Chicchiriccò
             Fix For: 4.1.0, 4.0.1


Following [the 
suggestions|https://cheatsheetseries.owasp.org/cheatsheets/Authentication_Cheat_Sheet.html#require-re-authentication-for-sensitive-features]
 of the OWASP Authentication Cheat Sheet, allow to configure Enduser to  
re-verify the user credentials before completing the following operations:

* password change
* profile update
* MFA device or account removal



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (SYNCOPE-1887) Enduser: require re-authentication for sensitive features

Reply via email to