Improper validation - Password must not contain the username

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

Comment 9 months ago →
🇨🇦Canada earthangelconsulting
something puzzling here: the patch from #10 makes sense, however when it was merged to the main branch for version 4.0.0, a conditional in that patch was left out! this did not make a difference on php7.4 as far as i can tell. however, running version 4.0.0 on php8.1 causes that original error "Password must not contain the username" to occur, for existing users.

i wrote this simple patch and it seems to have fixed the problem. can someone please verify? The automatic test didn't give an option to test against password_policy 4.0.0 which is what it was designed for.
Comment 9 months ago →
🇨🇦Canada earthangelconsulting
apologies, previous post isn't using the naming convention for patches. this one should be.
Comment 5 months ago →
🇺🇸United States Kristen Pol Santa Cruz, CA, USA
@earthangelconsulting Please open a new issue if this is still a problem and link to this issue. Thanks.
Issue was unassigned.
Comment 3 months ago →
🇺🇸United States Kristen Pol Santa Cruz, CA, USA
Unassigning.