View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0010120Talermerchant backoffice SPApublic2025-06-22 17:312025-06-23 18:31
Reportersebasjm Assigned Tosebasjm  
PrioritynormalSeveritymajorReproducibilityhave not tried
Status resolvedResolutionfixed 
Product Version1.0 
Target Version1.0 stretch goalsFixed in Version1.0 stretch goals 
Summary0010120: do not ask the admin for the current instance password to change to a new password
Descriptionotherwise, admin can't unlock merchnat accounts

i also suggest that we should add the feature from the merchant backend for the admin to reset the password and the backend should send an email with new random password (and reset-on-login flag)
TagsNo tags attached.

Relationships

related to 0010121 resolvedsebasjm should be able to change the instance password with the admin access token 

Activities

Christian Grothoff

2025-06-22 18:01

manager   ~0025306

Password reset involving the e-mail is another (already open) issue. Just make sure the admin can set the password for now.

sebasjm

2025-06-23 00:52

developer   ~0025312

Ok, SPA does this but the backend doesn't accept the token of the admin session to change the password of a random instance (in this case "qwe")

curl 'http://merchant.taler.test:1180/instances/qwe/private/auth' \
  -H 'Authorization: Bearer secret-token:W54DY9Q7PZMSHVN20HAKMWJAA5NDB1XKW9SY8XADZJ1NQN2CKYC0' \
  --data-raw '{"token":"secret-token:eee","method":"token"}'

sebasjm

2025-06-23 00:59

developer   ~0025313

22563a4f9..f25215a33 fixed the SPA, still needs the merchant backend

i'm keeping this open since it will be need to be adapted for v19 (with the new password auth type)

sebasjm

2025-06-23 14:22

developer   ~0025322

f25215a33..b677f250a

Issue History

Date Modified Username Field Change
2025-06-22 17:31 sebasjm New Issue
2025-06-22 18:00 Christian Grothoff Assigned To => sebasjm
2025-06-22 18:00 Christian Grothoff Status new => assigned
2025-06-22 18:00 Christian Grothoff Target Version => 1.1
2025-06-22 18:01 Christian Grothoff Note Added: 0025306
2025-06-23 00:52 sebasjm Note Added: 0025312
2025-06-23 00:59 sebasjm Note Added: 0025313
2025-06-23 01:21 sebasjm Relationship added related to 0010121
2025-06-23 01:22 sebasjm Assigned To sebasjm =>
2025-06-23 01:22 sebasjm Status assigned => confirmed
2025-06-23 14:22 sebasjm Note Added: 0025322
2025-06-23 14:22 sebasjm Assigned To => sebasjm
2025-06-23 14:22 sebasjm Status confirmed => resolved
2025-06-23 14:22 sebasjm Resolution open => fixed
2025-06-23 18:31 Christian Grothoff Product Version => 1.0
2025-06-23 18:31 Christian Grothoff Fixed in Version => 1.0 stretch goals
2025-06-23 18:31 Christian Grothoff Target Version 1.1 => 1.0 stretch goals