Skip to content

Z
Zope
Commit 6eef5f29 authored by Christopher Petrilli's avatar Christopher Petrilli
Browse files
Options

Fixed so that old password no longer shows. This was a minor security 

issue. Noted by Luciano Rahalho.
parent 43726a52
Show whitespace changes
Inline Side-by-side
Showing with 5 additions and 5 deletions
lib/python/AccessControl/editUser.dtml
View file @ 6eef5f29
......@@ -15,17 +15,17 @@
<!--#var expr="user.name"-->
</TD>
</TR>
<TR><TD COLSPAN=2>&nbsp;</TD></TR>
<!--#if remote_user_mode__-->
<INPUT TYPE="HIDDEN" NAME="password" value="<!--#var password html_quote-->">
<INPUT TYPE="HIDDEN" NAME="confirm" value="<!--#var password html_quote-->">
<!--#else-->
<TR>
<TD VALIGN="TOP">
<STRONG>Password</STRONG>
<STRONG>New Password</STRONG>
</TD>
<TD VALIGN="TOP">
<INPUT TYPE="PASSWORD" NAME="password" VALUE="<!--#var password html_quote-->" SIZE="40">
<INPUT TYPE="PASSWORD" NAME="password" SIZE="40">
</TD>
</TR>
<TR>
......@@ -33,11 +33,11 @@
<STRONG>(Confirm)</STRONG>
</TD>
<TD VALIGN="TOP">
<INPUT TYPE="PASSWORD" NAME="confirm" VALUE="<!--#var password html_quote-->" SIZE="40">
<INPUT TYPE="PASSWORD" NAME="confirm" SIZE="40">
</TD>
</TR>
<!--#/if-->
<TR><TD COLSPAN=2>&nbsp;</TD></TR>
<TR>
<TD VALIGN="TOP">
<STRONG>Domains</STRONG>
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7