© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Obviously we can just tell admins to switch Persona users to another auth method, but that means the users will need a new password. And we don't currently have a graceful way to prompt them for one in a situation like this. The existing "force password change on next login" functionality won't work, because it requires you to successfully log in first, and once a user is switched away from the Persona auth method, they will no longer be able to log in (particularly so once the Persona service is shut down).
An ideal way to handle it might be:
1. Allow the Persona auth method to have a "parent" auth method.
2. Before the Nov 2016 shutdown, flag the Persona users so that after their next successful Persona login, we tell them about the switch, force them to enter a password for the new parent auth method (if it has one), and then switch them over to the new auth method.
3. After the Nov 2016 shutdown, clicking on the "Persona" link in the login box instead takes you to a screen that tells you about the switch, and sends you to the "forgot password" page to reset the password for your new auth method.