From ab29a67a3261ee74d6974391d371229ad46a3be4 Mon Sep 17 00:00:00 2001
From: Joas Schilling <coding@schilljs.com>
Date: Mon, 14 Mar 2022 13:30:59 +0100
Subject: Allow creating app passwords without validating the user's password
 again

Aparently the idea behind the command was exactly to do this.

Signed-off-by: Joas Schilling <coding@schilljs.com>
---
 core/Command/User/AddAppPassword.php | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

(limited to 'core')

diff --git a/core/Command/User/AddAppPassword.php b/core/Command/User/AddAppPassword.php
index 4f636c406fb..7a2270e20b1 100644
--- a/core/Command/User/AddAppPassword.php
+++ b/core/Command/User/AddAppPassword.php
@@ -109,10 +109,7 @@ class AddAppPassword extends Command {
 			return 1;
 		}
 
-		if (!$this->userManager->checkPassword($user->getUID(), $password)) {
-			$output->writeln('<error>The provided password is invalid</error>');
-			return 1;
-		}
+		$output->writeln('<comment>The password has not been validated, some features might not work as intended.</comment>');
 
 		$token = $this->random->generate(72, ISecureRandom::CHAR_UPPER.ISecureRandom::CHAR_LOWER.ISecureRandom::CHAR_DIGITS);
 		$generatedToken = $this->tokenProvider->generateToken(
-- 
cgit v1.2.3