Signed-off-by: Tobias Assmann <tobias.assmann@ecsec.de>
return;
}
+ // prevent setting an empty pw as result of pw-less-login
+ if ($event->getPassword()==='') {
+ return;
+ }
+
// If this is already a token login there is nothing to do
if ($event->isTokenLogin()) {
return;
public function updatePasswords(string $uid, string $password) {
$this->cache->clear();
+ // prevent setting an empty pw as result of pw-less-login
+ if ($password==='') {
+ return;
+ }
+
// Update the password for all tokens
$tokens = $this->mapper->getTokenByUser($uid);
foreach ($tokens as $t) {