From c44432a5f0f1c1841ff8b50e734a30bd9aeef945 Mon Sep 17 00:00:00 2001 From: Mark Wells Date: Thu, 12 Nov 2015 16:49:39 -0800 Subject: limit password reuse, core and svc_acct, #29354 --- httemplate/edit/process/svc_acct.cgi | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) (limited to 'httemplate/edit/process') diff --git a/httemplate/edit/process/svc_acct.cgi b/httemplate/edit/process/svc_acct.cgi index 9cac2c568..d75ff92c1 100755 --- a/httemplate/edit/process/svc_acct.cgi +++ b/httemplate/edit/process/svc_acct.cgi @@ -81,7 +81,12 @@ if ( $cgi->param('clear_password') eq '*HIDDEN*' || $cgi->param('clear_password') =~ /^\(.* encrypted\)$/ ) { die "fatal: no previous account to recall hidden password from!" unless $old; } else { - $error ||= $new->set_password($cgi->param('clear_password')); + my $newpass = $cgi->param('clear_password'); + if ( ! $old->check_password($newpass) ) { + # then the password is being changed + $error ||= $new->is_password_allowed($newpass) + || $new->set_password($newpass); + } } if ( ! $error ) { -- cgit v1.2.1 From 2f4eb8cfbb07170dff09474e84adbf1c87284620 Mon Sep 17 00:00:00 2001 From: Mark Wells Date: Fri, 13 Nov 2015 14:28:34 -0800 Subject: point all links to browse/reason_type.html instead of reason.html, cleanup from #38532 --- httemplate/edit/process/reason.html | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'httemplate/edit/process') diff --git a/httemplate/edit/process/reason.html b/httemplate/edit/process/reason.html index cb79ed254..dfc18624e 100644 --- a/httemplate/edit/process/reason.html +++ b/httemplate/edit/process/reason.html @@ -1,6 +1,6 @@ <% include( 'elements/process.html', 'table' => 'reason', - 'redirect' => popurl(3) . 'browse/reason.html?class=' . + 'redirect' => popurl(3) . 'browse/reason_type.html?class=' . $cgi->param('class') . '&', ) %> -- cgit v1.2.1