Cornelius Kölbel

We discussed the following: add a policy in scope `authentication` or `authorization`? action: increase_failcounter_challenge_response (or shorter naming) Please check, that this does not collide with *increase failcounter on false pin**....

@plettich I think if an admin does a token rollover, I would not expect them to *change* the PIN of the token. Ah, ok, but if a PIN policy is...

@sepp67 We are on 3.7. Can you please check if this is still relevant or if it can be closed?

We need to check, if we need to do some urlencoding.

This is something I only heard once. In all other cases admins force users to specific values, thus easing the life by providing less choices. I think I would like...

This is superseded by #3299 and #3300. Also see #2712

@sidantaa Please drop your question at https://community.privacyidea.org.

OK, in such a case we could remove the tokentype, or move the "type" so s.th. like "old_type", and -- as you said -- fill the "type" with s.th. other...

@plettich says this is done *before* the login. However, this information should be sent to the webui *after* the user has logged in, so that also the realm information is...

@nilsbehlen Is it possible, that the privacyidea authenticator responds to two different schemes? Like that the push authenticator responds to `otpauth://` **and** to `pia://` Otherwise we will get problems with...