The Banner prompting users to check their account recovery settings causes confusion
Summary
According to this issue, a banner pops up every 3 month to reminds the users of reviewing their recovery settings. They are supposed to check the 2fa settings, email addresses, recovery codes, and ssh keys; all that in their account settings page and that's where they are directed to when they click on the banner. But since the banner says "recovery settings", and there is no "recovery settings" page, some users are confused about what to expect and what needs to be done.
Steps to reproduce
This banner appears to users every 3 month. So when it does, click on it and it will direct you to your account settings,
What is the current bug behavior?
Th banner says the user needs to review "recovery settings" while there is no "recovery settings page. Users are redirected to account settings with no clarification of what needs to be done.
What is the expected correct behavior?
The most convenient way is for users is to review the recovery settings inside that banner. The same approach is adopted by Github.
Instead, we can have:
-
The banner should have a link to recovery options.
-
The banner should clearly state what the user should be reviewing. Or When redirected to the account settings, another banner should pop up and point the user to what needs to be reviewed.
Relevant logs and/or screenshots
header | header |
---|---|
Output of checks
This bug happens on GitLab.com . This change was introduced by !23994 (merged)
Proposal
Banner text:
-
We recommend you ensure
two-factor authentication
is enabled and that the settings are up to date.- link to 2fa section: https://gitlab.com/-/profile/two_factor_auth