Temp pass to allow password modification and login

Created on 21 March 2023, over 1 year ago

Updated 22 September 2023, 9 months ago

Problem/Motivation

After attempting to authenticate the user using their provided username and password, the UserAuthenticationTempPassCode method "login" checks the temporary password for successful authentication. However, there is an issue with the if statement where the "has_equals" function compares the new password with the temporary password. As a result, the user cannot log in.

Furthermore, it seems that there is a missing logic in which if the temporary password matches the user's temp_pass, their account should be updated with the new password provided in the "pass" parameter of the request.

Proposed changes are attached in the patch provided.

🐛 Bug report

Status

Postponed: needs info

Version

8.1

Component

Code

Created by

🇲🇽Mexico isramv

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @isramv
Comment over 1 year ago →
🇲🇽Mexico isramv
Comment over 1 year ago →
🇲🇽Mexico isramv
Comment over 1 year ago →
🇦🇺Australia taggartj
thanks for this, however can you please have a look at this https://www.drupal.org/project/rest_password/issues/3036405 → (for has_equals)

So you are unable to login after you have set a new password ?
Status changed to Postponed: needs info 9 months ago12:50am 22 September 2023
Comment 9 months ago →
🇺🇸United States glynster
@isramv I am not able to reproduce this. Can you please test with the latest release 8.1.17 and see if you can still replicate?

contrib.social Blog FAQ Discussions

Production build 0.69.0 2024