I have been using an earlier release of CRAM successfully on my 5.5 site for several months. When I performed a upgrade of the site to 5.10, the CRAM module ceases to function.

I did a little debugging, and found that the hook_auth call does in fact work as described and returns TRUE. For whatever reason, the drupal core ignores this and claims that the incorrect username or password was entered.

I tried the code in CVS with the same results.

Comments

oneoftwo’s picture

would be great if somebody could help with that... some of us don't have the luxury of being able to use SSL and don't want to force their users to use OpenID... this provides at least some measure of security.

socketwench’s picture

I've toyed around with it a bit, but I can't seem to figure out why it fails. It seems to return true in hook_auth, but core seems to ignore it.