зеркало из https://github.com/mozilla/gecko-dev.git
Bug 287741: changing password from 'password' to 'password' should not invalidate login cookies - Patch by Marc Schumann <wurblzap@gmail.com> r=LpSolit a=justdave
This commit is contained in:
Родитель
70fef31849
Коммит
76818bd7f8
|
@ -98,15 +98,17 @@ sub SaveAccount {
|
|||
|| ThrowUserError("new_password_missing");
|
||||
ValidatePassword($pwd1, $pwd2);
|
||||
|
||||
my $cryptedpassword = bz_crypt($pwd1);
|
||||
trick_taint($cryptedpassword); # Only used in a placeholder
|
||||
$dbh->do(q{UPDATE profiles
|
||||
SET cryptpassword = ?
|
||||
WHERE userid = ?},
|
||||
undef, ($cryptedpassword, $user->id));
|
||||
if ($cgi->param('Bugzilla_password') ne $pwd1) {
|
||||
my $cryptedpassword = bz_crypt($pwd1);
|
||||
trick_taint($cryptedpassword); # Only used in a placeholder
|
||||
$dbh->do(q{UPDATE profiles
|
||||
SET cryptpassword = ?
|
||||
WHERE userid = ?},
|
||||
undef, ($cryptedpassword, $user->id));
|
||||
|
||||
# Invalidate all logins except for the current one
|
||||
Bugzilla->logout(LOGOUT_KEEP_CURRENT);
|
||||
# Invalidate all logins except for the current one
|
||||
Bugzilla->logout(LOGOUT_KEEP_CURRENT);
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
|
|
Загрузка…
Ссылка в новой задаче