Content
View differences
Updated by Niels Lindenthal over 5 years ago
# Steps to reproduce
* Setup **As** an OpenProject user that authenticates with omniauth, e.g. Google
* Logout
* Reset logging in via omniauth (OpenID Connect (e.g. Google), etc.)
**I want to** still receive a password
# Current behavior
* There is a success message telling the user an reminder email has been sent out.
* No email is sent out.
* The user has no chance
**so that** I can be reminded of which provider I need to use to login even if he has access to the email address. with instead of using a username and password.
# Expected behavior **Acceptance criteria**
* When clicking on "Forgot password?" and entering my user's email address
* instead of doing nothing when not using username/password send a reminder email telling the user that they authenticate their chosen omniauth provider (e.g. Google), and that they do not have a password to change
* An email is sent to the user explaining how to set a password.
# Open
* Can we allow users to change their authentication method to username/password?
* What happens in case we want to enforce the usage of an SSO provider?
* Setup
* Logout
* Reset
**I want to** still receive a
# Current behavior
* There is a success message telling the user an
* No email is sent out.
* The user has no chance
**so that** I can be reminded of which provider I need
# Expected behavior
* When clicking on "Forgot password?" and entering my user's email address
* instead of doing nothing when not using username/password send a reminder email telling the user that they authenticate their chosen omniauth provider (e.g. Google), and that they do not have a password to change
* An email is sent to the user explaining how to set a password.
# Open
* Can we allow users to change their authentication method to username/password?
* What happens in case we want to enforce the usage of an SSO provider?