Optionally enforce using OpenID on existing account
Fuzbolero - April 11, 2009 - 12:13
| Project: | OpenID |
| Version: | 5.x-1.x-dev |
| Component: | OpenID Client |
| Category: | feature request |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | active |
Description
To help prevent account hijacks, require email confirmations.
It will also enable account sharing.
See the detailed description in the below linked issue.
- require email confirmation during password resets
- couple with OpenID in a similar way: enforce email confirmation before adding or changing OpenIDs
FYI - Related feature request for Drupal core:
"User account hijack prevention"
http://drupal.org/node/430780