login_one_time_get_hash doesn't match user_pass_rehash [#2773593]

The email sends a link with a hash generated by login_one_time_get_hash, which is then compared to the hash returned by user_pass_rehash which now doesn't match.

Attached is a patch against dev that removes login_one_time_get_hash and updates the email to use user_pass_rehash to match the comparison.

Comment	File	Size	Author
#2	remove_login_one_time_get_hash-2773593-2.patch	801 bytes	KarlShea

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Comment #1

27 July 2016 at 16:54

KarlShea created an issue. See original summary.

Comment #2

KarlShea

he/him

English

Minneapolis 🇺🇸

CreditAttribution: KarlShea commented 27 July 2016 at 16:55

Status:

Active

» Needs review

File	Size
remove_login_one_time_get_hash-2773593-2.patch	801 bytes

Comment #3

bapi_22 CreditAttribution: bapi_22 at Cybage Software Pvt Ltd. commented 11 August 2016 at 11:12

Assigned:

Unassigned

» bapi_22

Comment #4

11 August 2016 at 11:14

bapi_22 authored a541e38 on 6.x-2.x

Issue #2773593 by KarlShea, bapi_22: login_one_time_get_hash doesn't...

Comment #5

bapi_22 CreditAttribution: bapi_22 at Cybage Software Pvt Ltd. commented 11 August 2016 at 11:15

Status:

Needs review

» Fixed

Committed. Thanks.

Comment #6

25 August 2016 at 11:24

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

login_one_time_get_hash doesn't match user_pass_rehash

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Thank you to these Drupal contributors

News items

Our community

Documentation

Drupal code base

Governance of community