Contrib.social

Password fields are hidden even on user.reset route

Open on Drupal.org →
Created on 23 September 2020, about 4 years ago
Updated 20 September 2024, about 2 months ago

Password fields are hidden even on user.reset route. It means that Users are not able to reset their password or login for the first time (when admin create their account).

  • Install userprotect module
  • On permission page, give all userprotect permissions to users
  • Reset your password and go to reset password URL
  • -> Password fields are hidden, you can't reset it

Check current route before hiding form fields in "src/Plugin/UserProtection/Password"

Develop patch

🐛 Bug report
Status

Postponed: needs info

Version

1.1

Component

Code

Created by

🇫🇷France MTristanOP

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

  • Comment about 2 months ago
    🇧🇪Belgium StefanieV

    +1. Patch works and seems quite essential to add.

  • Status changed to Postponed: needs info about 2 months ago
  • Comment about 2 months ago
    🇳🇱Netherlands megachriz

    Can the steps to reproduce the issue a bit more expanded, because when I do the following I cannot reproduce the issue:

    1. Install User Protect.
    2. On the permission page, verify that the authenticated user has the permissions "Change own account", "Change own email" and "Change own password" (which is the case). The anonymous user doesn't have these.
    3. As an anonymous user, go to /user/password for resetting password.

    The page "Reset your password" displays as normal.

    So I think that there are additional steps needed to reproduce the issue. Maybe certain protection rules need to exist first? If so, what rules do you have configured?

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024