You are reading a single comment by @Velocio and its replies.
Click here to read the full conversation.
London Fixed Gear and Single-Speed is a community of predominantly fixed gear and single-speed cyclists in and around London, UK.
This site is supported almost exclusively by donations. Please consider donating a small amount regularly.
@Velocio
A bug in a script on our auth0 account which was supposed to merge duplicate accounts merged unrelated accounts.
The background is that when you sign in with email, and also with Google... this would create 2 accounts for you. To avoid duplicating these and potentially giving you fresh accounts on the forum every time you sign in using a different method... these should be merged.
The script to do this was changed today to use a new API provided by auth0, and the script contained a bug that meant it sometimes merged accounts even if the email did not match.
What this meant is that for a small number of people (fewer than 10) someone else may have logged in as them.
I was notified shortly via PM that this was happening, and have immediately:
If you were signed out... it does not mean you were affected at all. I am just being overly cautious on who to revoke the sessions for.