1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-11-28 09:42:41 +01:00
phorge-phorge/src
epriestley 4a566f9e5d Allow passwords to be edited even if account.editable is false
Summary:
Fixes T5900. We have some very old code here which does not let you update your password if the `account.editable` flag is set.

This was approximately introduced in D890, and I think it was mostly copy/pasted at that point. I'm not sure this ever really made sense. The option is not documented as affecting this, for example. In the modern environment of auth providers, it definitely does not make sense.

Instead, always allow users to change passwords if the install has a password provider configured.

Test Plan:
  - Set `account.editable` to false.
  - Used a password reset link.

Reviewers: btrahan

Reviewed By: btrahan

Subscribers: epriestley

Maniphest Tasks: T5900

Differential Revision: https://secure.phabricator.com/D10331
2014-08-21 15:35:43 -07:00
..
__tests__ Rename AphrontQueryException subclasses 2014-08-06 07:51:21 +10:00
aphront Fix security.require-https by marking redirect as external 2014-08-21 21:35:29 +10:00
applications Allow passwords to be edited even if account.editable is false 2014-08-21 15:35:43 -07:00
docs Improve UX for repository updates 2014-08-21 11:30:12 -07:00
extensions Add src/extensions/ to Phabricator 2013-08-14 15:38:06 -07:00
infrastructure Allow users to recover from a missing password hasher 2014-08-21 11:30:05 -07:00
view Modernize DatePicker 2014-08-16 14:55:22 -07:00
__phutil_library_init__.php Delete license headers from files 2012-11-05 11:16:51 -08:00
__phutil_library_map__.php Add bin/files compact for sharing file data storage 2014-08-21 11:47:59 -07:00