Add active sessions list and extra authentication to access personal account info

iosifvissarionovichstalin2979

• 2021年12月03日 22:54
• 編輯於

I hear a lot about people getting their accounts broken into and not able to force the invader out of their account other than having to change the password for the discord API to issue a new token

there should be an option under account settings that show active sessions (like on matrix) and have the option to log them out THEN change the password to ensure they are not still logged in to the account

this is a huge issue a lot of people complain about pertaining to discord itself especially when people dont even know if someone logged in to their account via token login (bypasses 2fa and any other security measures) and not only that but peoples personal information would then be seen by the attacker allowing them to identify a person (based on personal experience of my other account being broken into and had to delete it)

Edit: forgot to add that discord does not even shoot you an email telling you if someone logged in via account token

2

• 

  Felipe

  • 2021年12月07日 03:13

  Those are great ideas! The sessions feature should have already been added ages ago.

  As for the lack of token login emails, I don't think Discord was expecting people to be logging in with tokens, or so I believe, so I don't think they've implemented it for that reason, although it would be a good feature.

   

  Happy holidays,

  Felipe

  0

請登入寫評論。