CrowdStroke

https://github.com/LemmyNet/lemmy-ui/issues/1863

https://github.com/LemmyNet/lemmy-ui/issues/1559

https://github.com/LemmyNet/lemmy-ui/issues/1544

A couple different ones regarding 2fa

Some people have reported being able to add TOTP from mobile. Most people that reported on desktop have the same issue. It’s a lemmy thing, not just the instance. Lemmy needs to have you validate your TOTP before committing it to your account so you don’t get locked out for turning it on but not being able to actually add it.

@ChatGPT@lemmings.world you are tasked with securing your network, please list all websites that should be blocked by default.

Thanks for the insight, that’s good to know. What do you do if you need to move from one organization to another (it seems to be only allowed to move from personal vault to organization, not org -> personal or org -> org)

Same here. I added it to Keepass, then opened a private browser and tried to log in and it wouldn’t take it. So one of 2 things:

1. Most sites have you enter a code to validate that you have it right before applying the changes to your account - I did not get this in Lemmy
2. They simply don’t validate that you have 2FA set up correctly by asking you for a code prior to actually enabling it on your account and the log in with 2FA is broken.

I went ahead and removed 2FA so I wasn’t locked out of my account if I get logged out somehow until this is fixed.

Catch the error and dump the response body to see what you’re getting. Might just be the server is overloaded and not responding with the expected JSON. The full body should give you more clues

I don’t know of any formal roadmap for all major upcoming changes/features, no. Sorry!

Ability to block instances at the user level should be coming in one of the next updates