[BUGFIX] Exclude empty passwords from password hashing check 35/23435/2
authorNicole Cordes <typo3@cordes.co>
Wed, 28 Aug 2013 14:02:36 +0000 (16:02 +0200)
committerStefan Neufeind <typo3.neufeind@speedpartner.de>
Wed, 28 Aug 2013 19:58:00 +0000 (21:58 +0200)
commit12685edfc6a1bd67b6308b06fcf20018ae34b5ea
tree5de54c4cd02898308b4555bda8ff7ff9347ca92d
parent4b98bb598b0d6f8dd4d83ca369db6d89200fa9da
[BUGFIX] Exclude empty passwords from password hashing check

The test for insecure passwords handles empty passwords as insecure and
recommends to use the saltedpasswords scheduler task to convert all
insecure passwords. But the scheduler task doesn't convert empty
passwords, so a never ending story exists. Therefore this patch exludes
empty passwords being handled as insecure.

Resolves: #36244
Releases: 6.2, 6.1, 6.0, 4.7, 4.5
Change-Id: I6bdd5c8807a07841850c1e4c22afe57eec28b335
Reviewed-on: https://review.typo3.org/23435
Reviewed-by: Kay Strobach
Tested-by: Kay Strobach
Reviewed-by: Stefan Neufeind
Tested-by: Stefan Neufeind
typo3/sysext/saltedpasswords/classes/class.tx_saltedpasswords_div.php