Skip to content

init: interactive recovery-device prompt (avoid single-device lockout) #321

Description

@bordumb

Context

auths init currently only emits a passive warning when an identity has a single usable device (a recovery single point of failure — if that device is lost or compromised there is no second device to recover from). The status workflow already detects this (StatusWorkflow::needs_recovery_device).

Task

During auths init, interactively offer to add a recovery device (a second device) so losing one device doesn't lock the user out. Sizable UX change — interactive prompt + the pairing flow.

Acceptance

  • After identity creation, init offers to add a recovery device (skippable, non-interactive/--yes honored).
  • Declining leaves the existing passive SPOF warning in place.
  • Tested for both the accept and decline paths.

(Deferred for now; tracked for a future UX pass.)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type
    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions