Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Update password within the new Account page

Download Browse

It's only mainly the backend part, the helpers on front end side will come in a dedicated patch. The old page is removed and the related features too (like the change of password when expiration is reached). The old change_pw.php was accessible by anonymous by accident in order to allow change of password after expiration. It's now properly managed with an explicit whitelisting of the 2 allowed URLs. Part of story #14552: User preferences goes Burning Parrot Change-Id: I735f16d0bc861c172857ceb8d4cdd18ec036c0a2

+721 −237
Manuel Vacelet (vaceletm) 2020-02-25 15:32
Manuel Vacelet (vaceletm) 2020-02-27 14:27
4efeead4ed475ec8d1a74c54cc2aa4dc81f7d3e6
c500df283245362243fd7e6aa144da296ee50df7
git #tuleap/stable/4efeead4ed475ec8d1a74c54cc2aa4dc81f7d3e6

Modified Files

Side by side diff
Inline diff
Name
M plugins/ldap/include/ldapPlugin.php +0 −2 Go to diff View file
M plugins/openidconnectclient/include/openidconnectclientPlugin.php +0 −9 Go to diff View file
M site-content/en_US/include/include.tab +0 −1 Go to diff View file
M site-content/fr_FR/LC_MESSAGES/tuleap-core.po +25 −0 Go to diff View file
M site-content/fr_FR/include/include.tab +0 −1 Go to diff View file
M src/common/Cryptography/ConcealedString.php +5 −0 Go to diff View file
M src/common/Event/Event.class.php +0 −8 Go to diff View file
M src/common/Password/PasswordSanityChecker.php +13 −3 Go to diff View file
M src/common/Password/PasswordStrategy.class.php +1 −7 Go to diff View file
M src/common/User/Account/UpdatePasswordController.php +128 −2 Go to diff View file
A src/common/User/Account/UpdatePasswordException.php +29 −0 Go to diff View file
A src/common/User/Account/UpdatePasswordSanityCheckerException.php +46 −0 Go to diff View file
M src/common/User/Account/templates/security-password.mustache +4 −5 Go to diff View file
M src/common/User/PreferencesPresenter.class.php +0 −18 Go to diff View file
M src/common/User/UserManager.class.php +2 −1 Go to diff View file
M src/common/include/URLVerification.class.php +6 −4 Go to diff View file
M src/templates/user/info.mustache +0 −10 Go to diff View file
D src/www/account/change_pw.php +0 −152 Go to diff View file
M src/www/account/index.php +0 −9 Go to diff View file
M tests/lib/Builders/UserTestBuilder.php +6 −0 Go to diff View file
M tests/phpunit/common/Cryptography/ConcealedStringTest.php +14 −0 Go to diff View file
A tests/phpunit/common/Include/UrlVerification/URLVerificationExpiredPasswordTest.php +100 −0 Go to diff View file
M tests/phpunit/common/Include/UrlVerification/URLVerificationTest.php +0 −5 Go to diff View file
A tests/phpunit/common/User/Account/UpdatePasswordControllerTest.php +342 −0 Go to diff View file