[BUGFIX] Don't update passwords if left untouched 29/51829/4
authorMads Jensen <mlj@systime.dk>
Sat, 25 Feb 2017 10:58:19 +0000 (11:58 +0100)
committerHelmut Hummel <typo3@helhum.io>
Sat, 25 Feb 2017 13:44:17 +0000 (14:44 +0100)
commite36479d759742f905eb223926375c745988777ba
tree68a110e999a8861405055f2012f9c518a2acdc8f
parent6e927aaec4a47f0ca1aa5eb5ddac0f6d747bd319
[BUGFIX] Don't update passwords if left untouched

Fixes a bug where editing a backend user record without updating the
password would result in the password being set to
the string literal "*********".

This reverts #79576 because the fix for showing the password hash in the readable
field was wrong and causing this bug.

Instead of forcing the database value in the hidden field to be asterisks,
we now correctly set the type of the human readable field to be password.

This triggers a special handling in the form engine JavaScript, not filling
the human readable field with the database value and switching to type text
when entering a new password.

Resolves: #79714
Reverts: #79576
Releases: master
Change-Id: Ia465293272131c32bbb9fd9b0d3916676e130996
Reviewed-on: https://review.typo3.org/51829
Reviewed-by: Nicole Cordes <typo3@cordes.co>
Tested-by: Nicole Cordes <typo3@cordes.co>
Tested-by: TYPO3com <no-reply@typo3.com>
Reviewed-by: Mads Lønne Jensen <mlj@systime.dk>
Tested-by: Mads Lønne Jensen <mlj@systime.dk>
Reviewed-by: Anders Kostending <aha@systime.dk>
Reviewed-by: Faton Haliti <fha@systime.dk>
Reviewed-by: Helmut Hummel <typo3@helhum.io>
Tested-by: Helmut Hummel <typo3@helhum.io>
typo3/sysext/rsaauth/Classes/Form/Element/RsaInputElement.php