07:48 <zmatt> damnit I think my bbx15's eMMC died :/

07:49 <zmatt> or possibly the fs just got so badly corrupted it doesn't even boot anymore, I guess I'll have to diagnose when I have a moment

07:57 <zmatt> jkridner: btw I got an email saying my beagleboard.org gitlab account has been deactivated and I need to sign in to reactivate it, except if I try to sign in it says I can't because my account is deactivated and tells me to "Please log back in to reactivate your account" :P

07:58 <zmatt> and that's what we call a polished user experience ;)

14:43 <jkridner> :-(

14:44 <jkridner> did you add 2fa? probably need to do password recovery

18:41 <zmatt> no 2fa, and I have the correct password. If I enter a different password it just says "Invalid login or password"

18:45 <zmatt> it's presumably this mechanism https://docs.gitlab.com/ee/administration/moderate_users.html#automatically-deactivate-dormant-users

18:46 <zmatt> but they say "If a deactivated user signs in, they are automatically activated." ... which is consistent with the message I get, except it's not working

18:53 <zmatt> https://gitlab.com/gitlab-org/gitlab/-/issues/428242

19:03 <zmatt> I guess I could try to see if password recovery happens to work (by exercising a different code path)

21:51 <set_> @zmatt: I had an issue too. I had to sign in w/ the 2fa w/ a code scanner on my phone.

21:52 <set_> It took a while for the 2fa to show exactly for some reason...

21:52 <set_> I could not sign in, then the 2fa finally showed weeks later, and then finally I was able to use a scanner to sign in.

21:55 <zmatt> I'm quite sure I haven't enabled 2fa on my beagleboard.org gitlab account

21:55 <zmatt> and this has nothing to do with 2fa anyway

21:57 <set_> I understand. But, w/ gitlab now, one has to use 2fa.

21:58 <set_> At least w/ the the git.beagleboard.org, I had to sign up w/ 2fa.

22:00 <set_> and...

22:01 <set_> it took forever to stop givig me error. I would sign in and resign in. Finally, that ole 2fa auth. screen showed its face.

22:20 <zmatt> jkridner: are you running the free version of gitlab or the premium version that has per-user licensing, because that will apparently indeed block self-serve reactivation ( https://gitlab.com/gitlab-org/gitlab/-/issues/365884#note_1125992627 )

22:27 <zmatt> presumably not.... *shrug*

22:46 <jkridner> free, ce

22:47 <jkridner> i wonder if there is a way to do 1-time bulk reactivation to get people on with 2FA.

22:56 <zmatt> hmm?

23:03 <zmatt> 2fa seems overkill anyway?

23:04 <zmatt> or rather, enforcing it for all users... some may have reason to use it of course

23:09 <zmatt> but do you mean the reason for deactivation was lack of having 2fa setup? because gitlab does have a mechanism to force 2fa on users but it doesn't involve deactivation

23:50 <jkridner> we added 2fa due to spammers and accounts abusing runners.

23:51 <zmatt> how would 2fa help against that?

23:56 <zmatt> it would be very easy to add OTP-based 2fa support to a bot

23:57 <jkridner> maybe, but it has slowed creation of same-user abuse accounts.