Download logintoboggan-5.x-1.7.tar.gztar.gz 45.06 KB
MD5: d91e28179b82a6a9c1f034c680bdeaaf
SHA-1: c705ff257038388526f34b15317f17be028cccb8
SHA-256: e5fbb1f7f8ae7088d81e763756f9dd7142c5303004b61ac26be59502efe6fcfe
Download logintoboggan-5.x-1.7.zipzip 59.67 KB
MD5: 5530f4c51dfc34f9c73598cdde252712
SHA-1: 3fe7be4e028484e38e36a33b156a44f2240b0663
SHA-256: 91f51838c13616d535940f3f095f56b0ae6597c27c739282fb58d5dab3df99e5

Release info

Created by: hunmonk
Created on: May 12, 2010 - 17:42
Last updated: May 12, 2010 - 17:53
Core compatibility: 5.x
Release type: Security update, Bug fixes

Release notes

Changes since DRUPAL-5--1-6:

  • remove unnecessary db_query -- admins validating a user account shouldn't trigger an account login, either.
  • better check for no password.
  • switch to using user_pass_rehash() for validation hashes.
  • #739978 by quicksketch: Remove the CVS version/revision from the settings page
  • #769900 by hunmonk, miro_dietiker: redirect on invalid email validation.
  • #765994 by hunmonk: Non-authenticated role is hidden in user profile form even when 'Set password' is unchecked. also backported the missing logic for the user admin form from 6.x
  • #797142 by hunmonk: fix session fixation vulnerability.