Skip to content

Make security warning stand out more #27605

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Jun 23, 2021
Merged

Make security warning stand out more #27605

merged 2 commits into from
Jun 23, 2021

Conversation

@LukasReschke
Copy link
Member

The security warning is currently being ignored by too many users as it's part of the text and not visually distinct.

Before:
Screenshot 2021-06-22 at 19 19 37

After:
Screenshot 2021-06-22 at 19 20 24

Fixes #26943

@LukasReschke
Make security warning stand out more
a1fe771 
The security warning is currently being ignored by too many users as it's part of the text and not visually distinct.

Ref #26944

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
@LukasReschke LukasReschke added this to the Nextcloud 22 milestone Jun 22, 2021
@LukasReschke
Copy link
Member Author

@jancborchardt Any opinions? We received several reports that this is being ignored by users which is bad. (in combination with a targeted phishing attack this could result in an account takeover)

blizzz
blizzz approved these changes Jun 22, 2021
View reviewed changes
Copy link
Member

@blizzz blizzz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

bildhübsch.

nickvergessen
nickvergessen reviewed Jun 22, 2021
View reviewed changes
@blizzz blizzz mentioned this pull request Jun 23, 2021
Merged
39 tasks
@LukasReschke
Move header into h3
6030dbe 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
jancborchardt
jancborchardt approved these changes Jun 23, 2021
View reviewed changes
Copy link
Member

@jancborchardt jancborchardt left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good! :)

Btw, one thing which is also distracting is the super weird user agent string. If we simplify/humanize that, it takes away even less focus from the security message.

@nickvergessen
Copy link
Member

Btw, one thing which is also distracting is the super weird user agent string. If we simplify/humanize that, it takes away even less focus from the security message.

So mobile clients and I think also the desktop cheat on this request and show a device name as user agent.

@LukasReschke
Copy link
Member Author

Failures look unrelated.

@LukasReschke LukasReschke merged commit a52ed8e into master Jun 23, 2021
@LukasReschke LukasReschke deleted the better-security-warning branch June 23, 2021 18:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nickvergessen nickvergessen nickvergessen approved these changes

@jancborchardt jancborchardt jancborchardt approved these changes

@blizzz blizzz blizzz approved these changes

Assignees

No one assigned

Labels

security

Projects

None yet

Milestone

Nextcloud 22

Development

Successfully merging this pull request may close these issues.

Improve visibility of login flow v2 warning

4 participants

@LukasReschke @nickvergessen @jancborchardt @blizzz