Do not update passwords if nothing changed

Signed-off-by: Julius Härtl <jus@bitgrid.net>

diff --git a/lib/private/Authentication/Token/PublicKeyTokenProvider.php b/lib/private/Authentication/Token/PublicKeyTokenProvider.php
index a6c672f70c6c5f6cc1fa1d856ea6b5e56259f2ab..2fc52ecf54496ce9d205e2162a926879f83a5a8c 100644 (file)
--- a/lib/private/Authentication/Token/PublicKeyTokenProvider.php
+++ b/lib/private/Authentication/Token/PublicKeyTokenProvider.php
@@ -433,9 +433,12 @@ class PublicKeyTokenProvider implements IProvider {
                $tokens = $this->mapper->getTokenByUser($uid);
                foreach ($tokens as $t) {
                        $publicKey = $t->getPublicKey();
-                       $t->setPassword($this->encryptPassword($password, $publicKey));
-                       $t->setPasswordInvalid(false);
-                       $this->updateToken($t);
+                       $encryptedPassword = $this->encryptPassword($password, $publicKey);
+                       if ($t->getPassword() !== $encryptedPassword) {
+                               $t->setPassword($encryptedPassword);
+                               $t->setPasswordInvalid(false);
+                               $this->updateToken($t);
+                       }
                }
        }