When entering a password for a protected node, the form does not allow access even when the password is correct. But when you submit the form with the wrong password or an empty string in the password field, you will naturally see an incorrect password error, but then when you enter the correct password immediately again, you will gain access to the content. It would be great to ensure that all passwords that are correctly entered will ensure access regardless.

CommentFileSizeAuthor
#3 double_sha1-1978120-2.patch740 bytesbritter
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

oadaeh’s picture

oadaeh CreditAttribution: oadaeh commented

I don't know if this is related or not, but you might check out the patch I posted at #2044237: The module does not check if the password was changed to see if it fixes this.

izus’s picture

izus CreditAttribution: izus commented
Issue summary: View changes
Status: Active » Closed (cannot reproduce)

tested it but can't reproduce it.
i think it is solved with the current code base

britter’s picture

britter CreditAttribution: britter commented
FileSize
double_sha1-1978120-2.patch740 bytes

You may want to check this out, just came across it in a build, if you sha1() the value of the password field per node on the way in (saving) you'll have to double sha1(sha1(the password)) on the way out as I believe the password field already encrypts it for you. So this will fix it on the way in (saving), you'll have to clear your existing passwords as they are double encrypted and will never match a single encrypted value.

dsoini’s picture

dsoini CreditAttribution: dsoini commented

I have this problem if I set my nodes to use a global password. The password is not accepted. The patch does not fix the problem.