Bugs item #714673, was opened at 2003-04-04 01:28
Message generated for change (Comment added) made by richard
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=402788&aid=714673&group_id=31577
Category: Web interface
>Group: cvs main branch
>Status: Closed
>Resolution: Fixed
Priority: 5
Submitted By: Jogi Hofmueller (the6)
Assigned to: Richard Jones (richard)
Summary: no login with empty password does not work
Initial Comment:
in the documentation i read that anyone who will be
added after submitting something via mail will be added
to the user list with an empty password thus not
permitting them to login. now this is exactly what we
want here but it just doesn't work.
after submitting i can login with the email address i
sent the request from and just hit enter as password.
voila, i can edit everything.
sorry for not finding a solution myself but my python
skills are far from sufficient ...
----------------------------------------------------------------------
>Comment By: Richard Jones (richard)
Date: 2003-04-24 17:48
Message:
Logged In: YES
user_id=6405
The behaviour is better now, but isn't perfect. I'm opening a
feature request for an auto-reply message informing new users of
their automatic registration.
----------------------------------------------------------------------
Comment By: Richard Jones (richard)
Date: 2003-04-10 14:57
Message:
Logged In: YES
user_id=6405
That rule was written before Roundup got a real security
model. I need to discuss the ramifications of this on the
users list.
----------------------------------------------------------------------
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=402788&aid=714673&group_id=31577
|