+ Add Question

Seguridad

A

Hola, muy buena la iniciativa y me encanta el entorno.
Como falla veo

1- no hay solicitud de comprobar la cuenta via mail
2- si por casualidad el usuario deja su cent abierta en un rdendor publico, se puede cambiar correo y contraseƱa sin solicitar la contraseƱa anterior


saludos

All responses

Brendon Wadey staff
Replied on Nov 25, 2013 - 19:01 UTC

Hi,

You can install one of our clients for Chrome, Firefox, Gmail or Outlook to access Todoist within your email. You can find these from the main Todoist.com page (signed out).

As for changing password, you will always need to know the Previous password, for security reasons. This is normal practice on web applications.

Thanks,
Brendon.

Andreas N. premium
Replied on Nov 26, 2013 - 10:07 UTC

Hi Brendon,

At the moment, you can change the password without typing the actual password. I just tried it and you don't have to enter the actual password.

I think this should really be implemented as it is really important for user security and, as you also said, normal practice on web applications.

Thanks and best regards,
Andreas

David Trey staff
Replied on Nov 26, 2013 - 13:10 UTC

Hello Andreas,

Thank you for your suggestion, we'll look into this.


Best regards,
David