Error on changing own password

Confirmed, not a PHP 5.x issue.
Critical because users are left with auto-generated passwords which are ugly.

cvbge and myself confirmd this bug. setting priority to critical.

Introduced by 'change own username' patch:
user_edit_form() does not add 'name' field if user does not have permission.
Then in user_edit_validate() if user does not have permission we check elseif $edit['name'] != $user->name while the left part is not set.

I think the correct solution would be to drop the elseif completly - if user does not have the permission, the field won't be set.

Aye and if the name is not set, then $form_values['name'] won't be set either. Wonders of form API. Indeed that elseif is not needed.

Committed to HEAD. Thanks.

One more thing to change in there:
warning: array_filter(): The first argument should be an array in /home/tinklas/public_html/cs/modules/user.module on line 1244.

The error occurs in function _user_edit_submit($uid, &$edit), line: $edit['roles'] = array_filter($edit['roles']);. If the user is not an admin, $edit['roles']) is NULL.

Darius

Committed to HEAD.

I think this isn't fixed yet
I can duplicate this error in a fresh CVS install.
On line 1210 of user.module

  elseif ($edit['name'] != $user->name) {
    form_set_error('name', t('You are not allowed to change this username.'));

If the user is not allowed to "change own username" $edit['name'] is not defined the "You are not allowed to change this username." error appears and the changes are not saved.

Sorry, I was working with an old version of user.module