Double records for new user password in password history [#2131757]

* Both the password submit and hook_user_insert insert records
* The one from hook_user_insert is double hashed cause pass is already hashed at that stage
* Need to include the file that contains the hashing function

Comment	File	Size	Author
	password_policy_double_insert.patch	1.75 KB	hefox

Comments

Comment #1

erikwebb commented 27 November 2013 at 15:20

Should we be trimming the password? If there is a leading or trailing space, won't that make our stored password hash different than the main Drupal table's?

Comment #2

coltrane

he/him

commented 27 November 2013 at 18:52

Status:

Needs review

» Reviewed & tested by the community

Drupal's user_save() already trims the password so leading or trailing spaces aren't saved for passwords (they're also trimmed on login so it doesn't matter).

Patch looks good to me. RTBC

Comment #3

erikwebb commented 27 November 2013 at 20:54

Status:

Reviewed & tested by the community

» Fixed

Fixed. Thanks!

http://drupalcode.org/project/password_policy.git/commit/78d798d

Comment #4

11 December 2013 at 21:00

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Double records for new user password in password history

Comments

Comment #1

Comment #2

Comment #3

Comment #4

News items

Our community

Documentation

Drupal code base

Governance of community