github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-05-30 15:28:37 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

DEV: Change hide_email_address_taken default to true (#30293)

Browse Source 
We're changing the default of hide_email_address_taken to true. This is a trade-off we want to make, as it prevents account enumeration with minimal impact on legitimate users. If you forget you have an account and try to sign up again with the same e-mail you'll receive an e-mail letting you know.
This commit is contained in:
Ted Johansson
2024-12-17 10:46:04 +08:00
committed by GitHub
parent 0410c07342
commit c1c7ea8959
12 changed files with 55 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
spec/lib/email_updater_spec.rb
View File

@ -5,6 +5,8 @@ RSpec.describe EmailUpdater do
let(:new_email) { "new.email@example.com" }
it "provides better error message when a staged user has the same email" do
SiteSetting.hide_email_address_taken = false
Fabricate(:user, staged: true, email: new_email)
user = Fabricate(:user, email: old_email)