[Feature flag] Rollout of `vue_2fa_recovery_codes`
What
Added in !49078 (merged)
Related to #267730 (closed)
Remove the :vue_2fa_recovery_codes
. The new recovery codes layout disables the "Proceed" button until the user has copied, downloaded, or printed their recovery codes.
Screenshots for context
(Not real recovery codes)
Desktop
Page | Before | After |
---|---|---|
Recovery codes | ||
Recovery codes - Proceed enabled | N/A | |
Account after clicking "Proceed" |
Mobile
Page | Before | After |
---|---|---|
Recovery codes | ||
Account after clicking "Proceed" |
Owners
- Team: ~"group::access"
- Most appropriate slack channel to reach out to:
#g_manage_access
- Best individual to reach out to: Peter Hegman
Expectations
What are we expecting to happen?
Users are required to copy, download, or print 2FA recovery codes before proceeding
What might happen if this goes wrong?
Users can proceed without copying, downloading, or printing 2FA codes
What can we monitor to detect problems with this?
https://sentry.gitlab.net/gitlab/gitlabcom-clientside/
Beta groups/projects
If applicable, any groups/projects that are happy to have this feature turned on early. Some organizations may wish to test big changes they are interested in with a small subset of users ahead of time for example.
peterhegman
Roll Out Steps
-
Confirm that QA tests pass with the feature flag enabled (if you're unsure how, contact the relevant stable counterpart in the Quality department) -
Enable on staging ( /chatops run feature set vue_2fa_recovery_codes true --staging
) -
Test on staging -
Ensure that documentation has been updated - Small update in !49957 (merged)
-
Enable on GitLab.com for individual groups/projects listed above and verify behaviour ( /chatops run feature set --user=peterhegman vue_2fa_recovery_codes true
) -
Coordinate a time to enable the flag with the SRE oncall and release managers - In
#production
mention@sre-oncall
and@release-managers
. Once an SRE on call and Release Manager on call confirm, you can proceed with the rollout
- In
-
Announce on the issue an estimated time this will be enabled on GitLab.com -
Enable on GitLab.com by running chatops command in #production
(/chatops run feature set vue_2fa_recovery_codes true
) -
Cross post chatops Slack command to #support_gitlab-com
(more guidance when this is necessary in the dev docs) and in your team channel -
Announce on the issue that the flag has been enabled -
Remove feature flag and add changelog entry -
After the flag removal is deployed, clean up the feature flag by running chatops command in #production
channel
Rollback Steps
-
This feature can be disabled by running the following Chatops command:
/chatops run feature set vue_2fa_recovery_codes false
Edited by Peter Hegman