-
-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
v2024.5.0 doesn't allow one to enroll in account recovery #4628
Comments
Seems like the client (since Should be fixed by bitwarden/clients#8770 (but I have not looked if this requires further changes to our own validation logic). |
Not sure if we should fix this in some way. Almost all those kind of actions send the hash to be verified server side too. And then someone removed that check. I wonder how it works if someone logged-in via device and tries to enroll them self. I'm also not sure when that PR will be merged and if we can wait for that for example. |
I'm not all that familiar with this issue in the context of Mostly chiming in because I can help with this:
I'm expecting to start having this work QA'd in the next week or so. The changes should be in You could fix this a little faster in |
Running vaultwarden 1.30.5-f05398a6 with bw_web build 2024.5.0 produces the following when trying to enroll in account recovery:
Switched to bw_web build v2024.3.1 and it works fine.
The text was updated successfully, but these errors were encountered: