You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the issue:
When a user clicks the 'Go Back' button in the Email Link Expired Password Reset flow in the My Account portal, they are redirected to an incomplete sign-in page. This also happens when the access URL is not specified for an Application (which is not specified by default).
Screen.Recording.2024-09-18.at.15.51.19.mov
How to reproduce:
Set up WSO2 Identity Server with email-sending capability.
Navigate to Login & Registration in the console.
Under Account Recovery, go to Password Recovery and check the 'Email link based recovery' option.
Optionally, change the Recovery link expiry time to 1 minute.
Create a user account with a valid email address.
Go to /myaccount.
Click the 'Forgot password' option and enter the user’s username.
The user will receive a 'Password reset' email.
Wait for the password reset link to expire, or send it again and let the old link expire.
Click the 'Reset Password' button after the link has expired.
An error page will be shown.
Click the 'Go Back' button.
This issue can also be observed for applications if the access URL is not specified under the General Tab (which is not specified by default).
Expected behavior:
The user should be redirected to a completed sign-in page, or the 'Go Back' button should not be visible if no valid access URL is provided to prevent an incomplete page from being displayed.
Describe the issue:
When a user clicks the 'Go Back' button in the Email Link Expired Password Reset flow in the My Account portal, they are redirected to an incomplete sign-in page. This also happens when the access URL is not specified for an Application (which is not specified by default).
Screen.Recording.2024-09-18.at.15.51.19.mov
How to reproduce:
This issue can also be observed for applications if the access URL is not specified under the General Tab (which is not specified by default).
Expected behavior:
The user should be redirected to a completed sign-in page, or the 'Go Back' button should not be visible if no valid access URL is provided to prevent an incomplete page from being displayed.
Environment information
Optional Fields
Related issues:
The text was updated successfully, but these errors were encountered: