Unable to modify login e-mail address of account.

@JulianPrieber, does that mean that https://linksta.cc/ has disabled that option? If so, considering it's the official instance of the project, how does one request that their e-mail address be modified? (Post a https://github.com/orgs/LinkStackOrg/discussions/new?category=general?)

Julian Prieber · Answer 3 · Wed Jan 10 2024 00:39:28 GMT+0800 (China Standard Time)

#684 (comment)

@JulianPrieber, does that mean that https://linksta.cc/ has disabled that option? If so, considering it's the official instance of the project, how does one request that their e-mail address be modified? (Post a https://github.com/orgs/LinkStackOrg/discussions/new?category=general?)

That is correct, it is disabled on linksta.cc on purpose.
We normally expect you to create a new account and simply migrate your links.
If that is not an option for you, you can reach support on our contact page.

`{3rd: "Beedell", 1st: "Roke"}`{.JSON5} · Answer 4 · Wed Jan 10 2024 00:40:28 GMT+0800 (China Standard Time)

#684 (comment)

I'll do so. Thanks. However, @JulianPrieber, what's the benefit to disabling it?

Julian Prieber · Answer 5 · Wed Jan 10 2024 00:42:25 GMT+0800 (China Standard Time)

There is no built-in logic for verifying an email after a change. The idea was always that if verification is enabled, an email is permanently bound to an account. Also, this would mess with social accounts a bit.

`{3rd: "Beedell", 1st: "Roke"}`{.JSON5} · Answer 6 · Wed Jan 10 2024 00:58:45 GMT+0800 (China Standard Time)

#684 (comment)

I've sent a message from mailTo:s1hvpv+info=linkstack.org@rokejulianlockhart.anonaddy.com to mailTo:info@linkstack.org.

#684 (comment)

@JulianPrieber, could I make an issue about that, then? Seems like having half-baked functionality for such an important aspect of account management might be a problem, especially since malicious actors on servers with this functionality enabled could register for an account with a trusted e-mail address and then change it to a non-trusted one.

Julian Prieber · Answer 7 · Wed Jan 10 2024 02:12:53 GMT+0800 (China Standard Time)

could I make an issue about that, then? Seems like having half-baked functionality for such an important aspect of account management might be a problem, especially since malicious actors on servers with this functionality enabled could register for an account with a trusted e-mail address and then change it to a non-trusted one.

I'm a bit confused... we do not allow changing the email to combat exactly this "account with a trusted e-mail address and then change it to a non-trusted one".
What you're describing is what is already implemented, so where is the issue?

`{3rd: "Beedell", 1st: "Roke"}`{.JSON5} · Answer 8 · Wed Jan 10 2024 02:15:38 GMT+0800 (China Standard Time)

#684 (comment)

@JulianPrieber, I'm talking about https://github.com/LinkStackOrg/LinkStack/.git, not https://linksta.cc, and referring to how you explained in #684 (comment) that the LinkStack software provides the functionality I suggested in #684 (comment) but that it doesn't yet provide verification on changes (per #684 (comment)). I'd like to suggest that that be remediated so that you could re-enable user e-mail account changes on https://linksta.cc.

Julian Prieber · Answer 9 · Wed Jan 10 2024 02:19:48 GMT+0800 (China Standard Time)

Sounds reasonable. I may be able to address this after v5.0. Our normal approach here is to create a feature request in https://github.com/orgs/LinkStackOrg/discussions/688