open-dsi
/
nextcloud-server
mirror of https://github.com/nextcloud/server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Also limit the password length on reset

Browse Source 
Signed-off-by: Joas Schilling <coding@schilljs.com>
pull/35965/head
Joas Schilling 2 years ago
parent 06da8adcd3
commit 9cfaf27142
No known key found for this signature in database
GPG Key ID: 74434EFE0D2E2205
2 changed files with 5 additions and 1 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 2
      core/Controller/LoginController.php
  2. 4
      core/Controller/LostController.php

2
core/Controller/LoginController.php
Unescape View File

@ -121,7 +121,7 @@ class LoginController extends Controller {
$response = new RedirectResponse($this->urlGenerator->linkToRouteAbsolute(
'core.login.showLoginForm',
['clear' => true] // this param the the code in login.js may be removed when the "Clear-Site-Data" is working in the browsers
['clear' => true] // this param the code in login.js may be removed when the "Clear-Site-Data" is working in the browsers
));
$this->session->set('clearingExecutionContexts', '1');

4
core/Controller/LostController.php
Unescape View File

@ -240,6 +240,10 @@ class LostController extends Controller {
$this->eventDispatcher->dispatchTyped(new BeforePasswordResetEvent($user, $password));
\OC_Hook::emit('\OC\Core\LostPassword\Controller\LostController', 'pre_passwordReset', ['uid' => $userId, 'password' => $password]);
if (strlen($password) > 469) {
throw new HintException('Password too long', $this->l10n->t('Password is too long. Maximum allowed length is 469 characters.'));
}
if (!$user->setPassword($password)) {
throw new Exception();
}

Write Preview
Loading…
Cancel
Save