6
horus
2y

How to reproduce:
- have a single login form for admins and ordinary users
- add a second button right next to 'login' which reads 'login as admin' in order to have a separate login for them
- release a new version of software with this change solely and changelog informing about it
- have customers admin tell you everybody is complaining about not being able to login with thwor admin accounts

Comments
  • 4
    Solution: Remove second button and add a mandatory dropdown selecting the user role having no default.

    Bonus points for limiting tries to one per minute without burst and clearing all input on error.
  • 2
    @Oktokolo pfft! Get real!

    - change the login form into a mail submission form where the user can send username and password as plain text and request which role to login as. After that just send the cookies attatched to the mail and ask the user to add them to their preferred browser.
  • 3
    @piratefox

    Email is for boomers. Just require the user to have Twitter and Whatsap, so you can send them the login token in two parts over different services - 2FA at its finest!!11
  • 1
    @Oktokolo hey may we go in pvt to start a business? I smell P O T E N T I A L for a business in here
  • 1
    @piratefox: I am too sane for this shit. But @rEaL-jAsE made a color picker app with cloud support - probably the best business partner for such an endeavor you could ever wish to find.
Add Comment