NOTE: If you are a developer, please use a private wiki based on foswiki/trunk on a daily base ...or use trunk.foswiki.org to view this page for some minimal testing.
Use Item9693 for docu changes for 1.2 and 2.0.
You are here: Foswiki>Tasks Web>Item10494 (16 Apr 2011, KennethLavrsen) Edit this topic text (e) Attach an image or document to this topic; manage existing attachments (a) View sequential topic history View without formatting (v) Create new topic Printable version of this topic (p) More: delete or rename this topic; set parent topic; view and compare revisions (m)

Item10494: htpasswd emails lost if changing to htdigest auth

Priority: CurrentState: AppliesTo: Component: WaitingFor:
Normal Closed Engine FoswikiUIPasswords  
HtPasswdUser.pm doesn't detect that the existing password file might be in htpasswd format id:password:emails, so if the password method is changed to "MD5" which implements htdigest encoding, email addresses are interpreted as the password hash and overwritten by the new password when ResetPassword is used.

When reading in .htpasswd as a "MD5" htdigest formatted file, if the email is missing, and there is an @ in the password hash, use the password field to recover the emails.

-- GeorgeClark - 17 Mar 2011

 

ItemTemplate edit

Summary htpasswd emails lost if changing to htdigest auth
ReportedBy GeorgeClark
Codebase
SVN Range
AppliesTo Engine
Component FoswikiUIPasswords
Priority Normal
CurrentState Closed
WaitingFor
Checkins Foswikirev:11099 Foswikirev:11103
TargetRelease patch
ReleasedIn 1.1.3
Edit | Attach | Print version | History: r4 < r3 < r2 < r1 | Backlinks | View wiki text | Edit wiki text | More topic actions
Topic revision: r4 - 16 Apr 2011, KennethLavrsen
 
The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. see CopyrightStatement. Creative Commons LicenseGet Foswiki at sourceforge.net. Fast, secure and Free Open Source software downloads