user-switching icon indicating copy to clipboard operation
user-switching copied to clipboard
verified publisher icon johnbillion

Expired nonce can be present in a switch back link

Open johnbillion opened this issue 1 year ago • 0 comments

To reproduce:

  • Two users are switched into the same account
  • User A clicks Log Out Everywhere Else
  • User B gets logged out and sent to login screen
  • User B click the Switch Back link and sees a "The link you followed has expired" error

Going back to the login screen and trying again will succeed.

johnbillion avatar Dec 02 '24 10:12 johnbillion