|
|
|
|
|
|
by nemothekid
1304 days ago
|
|
|
All speculation: >login with SSO and 2FA broken. I believe this was the result of turning off the "get rid of all the microservices " directive Elon pushed. I don't think it was malicious; some badly name microservice that was probably in charge of sending text messages or generating session tokens was shut off and the dependency chain wasn't fully understood. >AdsUI Anyone spending enough money for Twitter to case likely has an account manager who does everything for them. Anything that isn't in the "happy path" of the AdsUI probably gets handled by some engineer making some API calls to a prod API because it's unique enough to not worry about putting AdsUI and urgent enough where someone had to take care of it now. |
|
|
Prior to going private, Twitter would have had recurring Sarbanes-Oxley audits. Auditors understand the need for occasional emergency break-glass methods of making manual database queries or API calls, but they are less tolerant about that being a normal way of operating.
Plus, if you use emergency access often you'll eventually waste more time explaining each individual access to auditors at the end of the quarter than it would have taken to just implement a UI for the feature in a code-reviewed and audited internal admin console or user-facing UI.