Hopefully this workaround will get adjusted in the core. It seems a
little superfluous the way validations work to hash the password
before validation, but that's just me.
On Nov 30, 12:46 am, thatsgreat2345 <thatsgreat2...@gmail.com> wrote:
> Check out teknoidsauthblog, should be the second code box that shows
> you how to not hash passwords so that they validatehttp://teknoid.wordpress.com/2008/10/08/demystifying-auth-features-in...
>
> On Nov 30, 12:29 am, Milmar <milmarq...@gmail.com> wrote:
>
> > I have an "Add User" form that submits a username and apassword.
> > When I try to submit an empty username andpasswordfieldthen log it
> > in the "Users" controller (Authcomponent is used in
> > app_controller.php), the username value is returned as blank, but the
> >passwordvalue returns "ea03a66b50513f5710cb2507d7c91daecfefdab7" (may
> > be dependent on my security.salt):
>
> > [User] => Array
> > (
> > [username] =>
> > [password] => ea03a66b50513f5710cb2507d7c91daecfefdab7
> > )
>
> > I expect that no hash value would be generated since I left the
> >passwordfieldempty.
> > Also, would it be possible to validate thepasswordlength (without
> > using javascript) beforeAuthgenerates a hash value for it? Right now
> > I have avalidationfor "minimum length >=8", but that would always
> > return true since the hash value is always more than 8 characters
> > long.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to cake-php+unsubscribe@googlegroups.com
For more options, visit this group at http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
No comments:
Post a Comment