When the "Remove password change fields from user edit form" option is checked, the user still sees the following message on a failed login attempt:
Sorry, unrecognized username or password. Have you forgotten your password?
This message links to the password reset form path, which simply returns "Page not found."
I'm working around this issue by using the No Request New Password module, which removes the link to the password reset form from this error message. Still, for completeness' sake, it seems like the "Remove password change" option should remove the broken link as well.
Comments
Comment #1
tbertin commentedDid you have any luck removing this?
Comment #2
xjmAs I mentioned, I use:
http://drupal.org/project/noreqnewpass
Comment #3
johnbarclay commentedComment #4
eporama commentedHere's a patch to the 6.x-1.x branch that completes the functionality within ldapauth without using noreqnewpass.
Comment #5
johnbarclay commentedLooks good. I committed this, but will leave it as needs review until it has at least one other person look at it.
Comment #6
verta commentedSubscribing, will test this soon, I hope. Currently we use the No Request New Password module, so will be disabling it for testing.
Comment #7
cgmonroe commentedThis works for user login block but does not work for the user/login page. This is because they use different forms.
There is a simple fix however, just add an extra "case: 'user_login':" statement to the switch in the ldap_form_alter() function. Here's what the new code should look like.
WIth this added, the "forgot your password" part of the message is removed for both login blocks and the full login page.
Comment #8
johnbarclay commentedthis makes sense. it should also have a check for user->uid = 1, so user 1 can see this link.
Comment #9
cgmonroe commentedHave tested and committed these last two changes.
Marking this as closed/fixed.