Hi

I am using Password Reset Landing Page module, so anonymous user uses the registration form to enter their email. Then the system sends email with a link to a form where they can set their passwords for the first time. Password policies does not apply on this form.
Also, password policies do not apply on the password reset form.

Password policies only apply in the user/edit page.

Any idea?

thanks

CommentFileSizeAuthor
#16 password_policy-prlp-2943105-16.patch1.02 KBjcnventura
#12 password_policy-prlp-2943105-12.patch1 KBjcnventura
#12 interdiff_10_12.txt822 bytesjcnventura
#10 password_policy-prlp-2943105-10.patch694 bytesjcnventura

Comments

Sarahphp1 created an issue. See original summary.

jitesh doshi’s picture

jitesh doshi commented
Related issues: +#2942767: Prlp and Password_policy module

Hello maintainers,

I'm the maintainer for Password Reset Landing Page (PRLP) module. The requester here had created the same issue in PRLP queue. But the issue can only be fixed in this module. Mainly, you have to implement hook_form_alter for $form_id == 'user_pass_reset', and also make sure the order of handlers is correct.

Please feel free to reach out to me for any changes I need to make to PRLP module in order to make your changes work.

Thanks --Jitesh

0sarah0al’s picture

0sarah0al commented

Thanks alot Jitesh
appreciate it..

vimalabhi89’s picture

vimalabhi89 commented

any luck with this? I have the same problem

abhisekmazumdar’s picture

abhisekmazumdar
he/him
Primary language English
Location India
commented
Assigned: Unassigned » abhisekmazumdar

I'm working on a patch for this issue.

abhisekmazumdar’s picture

abhisekmazumdar
he/him
Primary language English
Location India
commented
Assigned: abhisekmazumdar » Unassigned
perarg’s picture

perarg commented

I am trying to figure out a workaround here. Both modules are using hook_form_FORM_ID_alter(). As we read here: API hook_form_alter
"The call order is as follows: all existing form alter functions are called for module A, then all for module B, etc., followed by all for any base theme(s), and finally for the theme itself. The module order is determined by system weight, then by module name."

The PRLP module is latter than PASSWORD_POLICY module, as it is based in alphabetical order. (We suppose that we haven't alter the order by any way)

@Jitesh Doshi you propose to focus at hook_form_alter but calling the hook in password_policy module the $form doesn't have the password_confirmation field yet. The reason is the above about call order.

What may be the optimal way to approach this ?
Go to prlp module, check if password_policy is enabled and try to call password_policy module's functions ?
Make password_policy to be called latest (i don't know if it is supported by drupal) and make changes in it's hook ?

vacho’s picture

vacho commented

I think this will be fixed at this issue https://www.drupal.org/project/password_policy/issues/3078741

vacho’s picture

vacho commented
Related issues: +#3078741: Password policies not apply to "Forgot password" form.
jcnventura’s picture

jcnventura
Primary language English
commented
Status: Active » Needs review
StatusFileSize
new password_policy-prlp-2943105-10.patch694 bytes

@vacho, I think it's better to keep the two issues separate. Let's deal with the prlp integration here.

andypost’s picture

andypost
he/him
Primary language Russian
commented
Status: Needs review » Needs work

++ to keep scope

NW for update hook to change weight

jcnventura’s picture

jcnventura
Primary language English
commented
Status: Needs work » Needs review
StatusFileSize
new interdiff_10_12.txt822 bytes
new password_policy-prlp-2943105-12.patch1 KB

Update hook added.

andypost’s picture

andypost
he/him
Primary language Russian
commented
Status: Needs review » Reviewed & tested by the community

Looks ready, thank you 👍

ultimike’s picture

ultimike
Primary language English
Location Florida, USA
commented

Applies cleanly to 3.x-dev, looks good-to-go.

-mike

nerdstein’s picture

nerdstein
he/him
Primary language English
Location United States
commented

I've reviewed and this seems fine. I have merged some other patches, can I get a reroll please?

jcnventura’s picture

jcnventura
Primary language English
commented
StatusFileSize
new password_policy-prlp-2943105-16.patch1.02 KB

Re-roll as requested. No interdiff, as there's no actual change other than context.

paulocs’s picture

paulocs
Primary language Portuguese, Brazil
Location Belo Horizonte
commented
Version: 8.x-3.0-alpha4 » 8.x-3.x-dev

RTBC +1

nerdstein’s picture

nerdstein
he/him
Primary language English
Location United States
commented
Status: Reviewed & tested by the community » Patch (to be ported)

This looks good as defined in #16 - ill merge this in and we can retest

  • nerdstein committed d25a5c2 on 8.x-3.x authored by jcnventura 
    Issue #2943105 by jcnventura, 0Sarah0Al, abhisekmazumdar, andypost,...
nerdstein’s picture

nerdstein
he/him
Primary language English
Location United States
commented
Status: Patch (to be ported) » Fixed

Good to go! Thanks, all.

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.