Browse Source
Handle one time password better
Signed-off-by: Carl Schwan <carl@carlschwan.eu>tags/v25.0.0beta1
Carl Schwan
1 year ago
2 changed files with 10 additions and 2 deletions
+ 1
- 1
lib/private/Authentication/Token/PublicKeyTokenProvider.php
View File
| @@ -401,7 +401,7 @@ class PublicKeyTokenProvider implements IProvider { | |||
| $this->cache->clear(); | |||
| // prevent setting an empty pw as result of pw-less-login | |||
| if ($password === '') { | |||
| if ($password === '' || !$this->config->getSystemValueBool('auth.storeCryptedPassword', true)) { | |||
| return; | |||
| } | |||
+ 9
- 1
tests/lib/Authentication/Token/PublicKeyTokenProviderTest.php
View File
| @@ -98,7 +98,7 @@ class PublicKeyTokenProviderTest extends TestCase { | |||
| $this->assertSame($password, $this->tokenProvider->getPassword($actual, $token)); | |||
| } | |||
| public function testGenerateTokenNoPassword() { | |||
| public function testGenerateTokenNoPassword(): void { | |||
| $token = 'token'; | |||
| $uid = 'user'; | |||
| $user = 'User'; | |||
| @@ -171,6 +171,10 @@ class PublicKeyTokenProviderTest extends TestCase { | |||
| ->method('updateActivity') | |||
| ->with($tk, $this->time); | |||
| $tk->setLastActivity($this->time - 200); | |||
| $this->config->method('getSystemValueBool') | |||
| ->willReturnMap([ | |||
| ['auth.storeCryptedPassword', true, true], | |||
| ]); | |||
| $this->tokenProvider->updateTokenActivity($tk); | |||
| @@ -578,6 +582,10 @@ class PublicKeyTokenProviderTest extends TestCase { | |||
| 'random2', | |||
| IToken::PERMANENT_TOKEN, | |||
| IToken::REMEMBER); | |||
| $this->config->method('getSystemValueBool') | |||
| ->willReturnMap([ | |||
| ['auth.storeCryptedPassword', true, true], | |||
| ]); | |||
| $this->mapper->method('hasExpiredTokens') | |||
| ->with($uid) | |||
Loading…