2 Commits

Author	SHA1	Message	Date
evazion	24ead500f0	users: use sudo mode when changing email addresses. ... When a user tries to change their email, redirect them to the confirm password page (like Github's sudo mode) instead of having them re-enter their password on the change email page. This is the same thing we do when a user updates their API keys. This way we have can use the same confirm password authentication flow for everything that needs a password.	2021-05-19 01:10:03 -05:00
evazion	258f4a8b95	users: move emails to separate table. ... * Move emails from users table to email_addresses table. * Validate that addresses are formatted correctly and are unique across users. Existing invalid emails are grandfathered in. * Add is_verified flag (the address has been confirmed by the user). * Add is_deliverable flag (an undeliverable address is an address that bounces). * Normalize addresses to prevent registering multiple accounts with the same email address (using tricks like Gmail's plus addressing).	2020-03-12 21:18:53 -05:00