View Issue Details

IDProjectCategoryView StatusLast Update
0022841mantisbtauthenticationpublic2017-12-04 02:25
ReporterdregadAssigned Todregad 
PrioritynormalSeverityminorReproducibilityhave not tried
Status assignedResolutionopen 
Product Version 
Target Version2.10.0Fixed in Version 
Summary0022841: Don't truncate password when it exceeds db field size
Description

Following up on discussion in PR 1048.

auth_process_plain_password() silently truncates the processed password to the size of the underlying database field.

This can cause problems when the password field's size is increased, as it will cause users to no longer be able to login, forcing them to reset their password.

TagsNo tags attached.

Activities

Issue History

Date Modified Username Field Change
2017-05-06 17:50 dregad New Issue
2017-05-06 17:50 dregad Status new => assigned
2017-05-06 17:50 dregad Assigned To => dregad
2017-05-06 18:14 dregad Note Added: 0056786
2017-06-04 16:19 atrol Target Version 2.5.0 => 2.6.0
2017-09-03 18:50 vboctor Target Version 2.6.0 => 2.7.0
2017-10-08 23:55 vboctor Target Version 2.7.0 => 2.8.0
2017-10-28 19:14 vboctor Target Version 2.8.0 => 2.9.0
2017-12-04 02:25 vboctor Target Version 2.9.0 => 2.10.0