When sign in with Twitter for the first time and "Automatically register new users" is enabled the generated password is stored in plain text into the database. Then the user cannot login with the provided password.

I solved this including 'includes/password.inc' and using user_hash_password on 'twitter_signin/twitter_signin.module' line 156

require_once DRUPAL_ROOT . '/' . variable_get('password_inc', 'includes/password.inc');
$account->pass = user_hash_password($password);

Comments

Alcaparra’s picture

Alcaparra CreditAttribution: Alcaparra commented

Can you explain this for noobies? I have the same problem :S Please :)

Where I put "require_once DRUPAL_ROOT . '/' . variable_get('password_inc', 'includes/password.inc');"??

juampynr’s picture

juampynr CreditAttribution: juampynr commented
Version: 7.x-5.8 » 7.x-5.x-dev
Priority: Normal » Critical
Status: Active » Fixed

Fixed warnings raised while creating the Drupal account at http://drupalcode.org/project/twitter.git/commit/8c6972e

Tested divadu's suggestion and committed it at http://drupalcode.org/project/twitter.git/commit/3121bcc. This was crucial since it blocked users from changing their password and logging in the next time.

Thanks!

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.