Caribou

joined 1 year ago

I think you've got a bug with your 2FA notification. in c/[email protected]

[–] [email protected] 2 points 1 year ago

I did lock myself out, and I had to set up a new account. I hope the developers fix this. Furthermore, I am scared of setting up TOTP now.

permalink
fedilink
source
context

[@asklemmy](https://lemmy.ml/c/asklemmy) [email protected] People using Mastodon to follow Lemmy subs, how are you organizing your feeds? in c/[email protected]

[–] [email protected] 1 points 1 year ago

There is a bug in 2FA in Lemmy. In every implementation of TOTP, the account is not locked under 2FA until the server verifies at least one TOTP password. In Lemmy, if the user is unable to set up 2FA on his device, and quits the session, he is locked out of his account.

permalink
fedilink
source