[prev in list] [next in list] [prev in thread] [next in thread] 

List:       esb-java-dev
Subject:    Re: [Dev] [IS-5.3.0-M5] What is the use of asking for email when "Username Recovery with email notif
From:       Ayesha Dissanayaka <ayesha () wso2 ! com>
Date:       2016-10-27 15:21:42
Message-ID: CA+35JNhnJrGrTXRXtUTDp+CcnwCSoBHt0CK4toYCku-_xbmqTg () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Yes. It is not a good user experience to be able to send random email
address and still be able to recover information.

Created bug jira https://wso2.org/jira/browse/IDENTITY-5284.

On Thu, Oct 27, 2016 at 6:57 PM, Johann Nallathamby <johann@wso2.com> wrote:

> Then we need to open a "Bug" jira and fix it IMO :). The current one can
> be left as an improvement for future to dynamically decide to show claims
> to uniquely identify the user.
>
> On Thu, Oct 27, 2016 at 6:15 PM, Ayesha Dissanayaka <ayesha@wso2.com>
> wrote:
>
>>
>> On Thu, Oct 27, 2016 at 6:07 PM, Johann Nallathamby <johann@wso2.com>
>> wrote:
>>
>>> But then at least we have to make sure all the fields that we show are
>>> validated. Otherwise as pointed out in the first mail it is confusing for
>>> the user right? Are the claims configurable? All the claims we show in the
>>> UI must be validated or we must not show them IMO.
>>>
>>
>> Agreed with Johan.
>> Same as I mentioned in Jira,
>>
>> "As of now if one entry is enough to identify a user in the user stores,
>> others get discarded. Instead it should ask for more information from user
>> on demand manner or should validate all the entry values at once."
>>
>> --
>> *Ayesha Dissanayaka*
>> Software Engineer,
>> WSO2, Inc : http://wso2.com
>> <http://www.google.com/url?q=http%3A%2F%2Fwso2.com&sa=D&sntz=1&usg=AFQjCNEZvyc0uMD1HhBaEGCBxs6e9fBObg>
>> 20, Palmgrove Avenue, Colombo 3
>> E-Mail: ayesha@wso2.com <ayshsandu@gmail.com>
>>
>
>
>
> --
> Thanks & Regards,
>
> *Johann Dilantha Nallathamby*
> Technical Lead & Product Lead of WSO2 Identity Server
> Governance Technologies Team
> WSO2, Inc.
> lean.enterprise.middleware
>
> Mobile - *+94777776950*
> Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>*
>



-- 
*Ayesha Dissanayaka*
Software Engineer,
WSO2, Inc : http://wso2.com
<http://www.google.com/url?q=http%3A%2F%2Fwso2.com&sa=D&sntz=1&usg=AFQjCNEZvyc0uMD1HhBaEGCBxs6e9fBObg>
20, Palmgrove Avenue, Colombo 3
E-Mail: ayesha@wso2.com <ayshsandu@gmail.com>

[Attachment #5 (text/html)]

<div dir="ltr"><div>Yes. It is not a good user experience to be able to send random \
email address and still be able to recover information.<br><br></div>Created bug jira \
<a href="https://wso2.org/jira/browse/IDENTITY-5284">https://wso2.org/jira/browse/IDENTITY-5284</a>.<br></div><div \
class="gmail_extra"><br><div class="gmail_quote">On Thu, Oct 27, 2016 at 6:57 PM, \
Johann Nallathamby <span dir="ltr">&lt;<a href="mailto:johann@wso2.com" \
target="_blank">johann@wso2.com</a>&gt;</span> wrote:<br><blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex"><div dir="ltr">Then we need to open a &quot;Bug&quot; jira \
and fix it IMO :). The current one can be left as an improvement for future to \
dynamically decide to show claims to uniquely identify the user.</div><div \
class="gmail_extra"><div><div class="h5"><br><div class="gmail_quote">On Thu, Oct 27, \
2016 at 6:15 PM, Ayesha Dissanayaka <span dir="ltr">&lt;<a \
href="mailto:ayesha@wso2.com" target="_blank">ayesha@wso2.com</a>&gt;</span> \
wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px \
#ccc solid;padding-left:1ex"><div dir="ltr"><span><div class="gmail_extra"><br><div \
class="gmail_quote">On Thu, Oct 27, 2016 at 6:07 PM, Johann Nallathamby <span \
dir="ltr">&lt;<a href="mailto:johann@wso2.com" \
target="_blank">johann@wso2.com</a>&gt;</span> wrote:<br><blockquote \
style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex" class="gmail_quote"><div dir="ltr">But then at \
least we have to make sure all the fields that we show are validated. Otherwise as \
pointed out in the first mail it is confusing for the user right? Are the claims \
configurable? All the claims we show in the UI must be validated or we must not show \
them IMO.</div><div class="m_-8292932356903323732m_-2841326986597220348m_-7376646181715780760gmail-yj6qo \
m_-8292932356903323732m_-2841326986597220348m_-7376646181715780760gmail-ajU"><div \
class="m_-8292932356903323732m_-2841326986597220348m_-7376646181715780760gmail-ajR" \
id="m_-8292932356903323732m_-2841326986597220348m_-7376646181715780760gmail-:224"></div></div></blockquote></div><br></div></span><div \
class="gmail_extra">Agreed with Johan. <br></div><div class="gmail_extra">Same as I \
mentioned in Jira,<br><blockquote>&quot;As of now if one entry is enough to identify \
a user in the user stores, others get discarded. Instead it should ask for more \
information from user on demand manner or should validate all the entry values at \
once.&quot;</blockquote></div><span><div class="gmail_extra">-- <br><div \
class="m_-8292932356903323732m_-2841326986597220348m_-7376646181715780760gmail_signature"><div \
dir="ltr"><b style="font-size:9pt;line-height:17px;font-family:arial,sans-serif;background-color:rgb(255,255,255)"><font \
color="#000066">Ayesha Dissanayaka</font></b><br><div><div \
style="font-family:arial,sans-serif;font-size:12.7273px;background-color:rgb(255,255,255)"><div><span \
style="color:rgb(32,18,77)"><span \
style="font-family:arial,sans-serif;font-size:10.9091px;line-height:15px">Software \
Engineer,</span></span><font color="#ff9900"><span \
style="font-family:arial,sans-serif;font-size:10.9091px;line-height:15px"><br><span \
style="color:rgb(7,55,99)">WSO2, Inc : </span></span></font><span \
style="color:rgb(7,55,99)"><span \
style="font-family:arial,sans-serif;font-size:10.9091px;line-height:15px"><a \
dir="ltr" href="http://www.google.com/url?q=http%3A%2F%2Fwso2.com&amp;sa=D&amp;sntz=1&amp;usg=AFQjCNEZvyc0uMD1HhBaEGCBxs6e9fBObg" \
rel="nofollow noreferrer" target="_blank">http://wso2.com</a><br>20, Palmgrove \
Avenue, Colombo 3</span></span></div><div style="font-size:13px"><span \
style="color:rgb(7,55,99)"><font face="Arial, sans-serif"><span \
style="font-size:11px;line-height:15px">E-Mail: <a href="mailto:ayshsandu@gmail.com" \
target="_blank">ayesha@wso2.com</a><br></span></font></span></div></div></div></div></div>
 </div></span></div>
</blockquote></div><br><br clear="all"><div><br></div></div></div><span class="">-- \
<br><div class="m_-8292932356903323732gmail_signature" \
data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div \
dir="ltr"><div><span style="background-color:rgb(255,255,255)"><font \
color="#000000">Thanks &amp; Regards,</font></span></div><div><span \
style="background-color:rgb(255,255,255)"><font \
color="#000000"><br></font></span></div><b>Johann<font color="#666666"> Dilantha \
Nallathamby</font></b><br><div><font color="#999999">Technical Lead &amp; Product \
Lead of WSO2 Identity Server</font></div><div><font color="#999999">Governance \
Technologies Team</font></div><div><font color="#999999">WSO2, \
Inc.</font></div><div><font \
color="#999999">lean.enterprise.middleware</font></div><div \
style="color:rgb(136,136,136)"><br></div><div><font color="#999999">Mobile -  <a \
value="+94773426635"><i>+94777776950</i></a></font></div><div><font \
color="#999999">Blog - <i><a href="http://nallaa.wordpress.com" \
target="_blank">http://nallaa.wordpress.com</a></i></font></div></div></div></div></div></div></div>
 </span></div>
</blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature" \
data-smartmail="gmail_signature"><div dir="ltr"><b \
style="font-size:9pt;line-height:17px;font-family:Arial,sans-serif;background-color:rgb(255,255,255)"><font \
color="#000066">Ayesha Dissanayaka</font></b><br><div><div \
style="font-family:arial,sans-serif;font-size:12.727272033691406px;background-color:rgb(255,255,255)"><div><span \
style="color:rgb(32,18,77)"><span \
style="font-family:Arial,sans-serif;font-size:10.909090995788574px;line-height:15px">Software \
Engineer,</span></span><font color="#ff9900"><span \
style="font-family:Arial,sans-serif;font-size:10.909090995788574px;line-height:15px"><br><span \
style="color:rgb(7,55,99)">WSO2, Inc : </span></span></font><span \
style="color:rgb(7,55,99)"><span \
style="font-family:Arial,sans-serif;font-size:10.909090995788574px;line-height:15px"><a \
rel="nofollow noreferrer" \
href="http://www.google.com/url?q=http%3A%2F%2Fwso2.com&amp;sa=D&amp;sntz=1&amp;usg=AFQjCNEZvyc0uMD1HhBaEGCBxs6e9fBObg" \
dir="ltr" target="_blank">http://wso2.com</a><br>20, Palmgrove Avenue, Colombo \
3</span></span></div><div style="font-size:13px"><span \
style="color:rgb(7,55,99)"><font face="Arial, sans-serif"><span \
style="font-size:11px;line-height:15px">E-Mail: <a href="mailto:ayshsandu@gmail.com" \
target="_blank">ayesha@wso2.com</a><br></span></font></span></div></div></div></div></div>
 </div>



_______________________________________________
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic