Hashed password value is re-hashed upon login and

Question

Hashed password value is re-hashed upon login and

Closed this issue 15 years ago · 3 comments

It looks like password field is hashed again when model is filled with DB result.

Consider test case:

$auth = Auth::instance();
$user = Sprig::factory('user')->values(array(
    'username' => 'testuser',
    'password' => '12345',
    'password_confirm' => '12345',
    'email' => 'test@example.com',
    'logins' => 0,
))->create();
$auth->login('testuser', '12345'); // returns false

Answer 1 · 2010-01-21T15:07:58.000Z

This is a known issue in Sprig itself. I'm waiting for an upstream fix before I close this but it is not code that belongs here.

The fix is a one liner and my recommendation is that until this is incorporated into Sprig, just put it in your own copy of sprig. Please feel free to add your voice to that issue to make sure it receives priority attention.

Answer 2 · 2010-01-21T15:59:10.000Z

Thanks for the reply. This should be closed then, if it's problem with Sprig. Why don't you put the fix into your own Sprig fork meanwhile?

Answer 3 · 2010-01-21T16:33:28.000Z

This should be closed then

I was going to leave it open to make it abundantly clear to all that the issue has not yet been resolved.

Why don't you put the fix into your own Sprig fork meanwhile?

Because several other people have already put this change into their forks. My hope is that this will be updated in the core really soon. If the problem lingers than I will pull the fix from someone else who has already made it.

My own fork is currently only there in the hope that some of my relationship changes will be pulled into Shadowhand's library. I don't actually use it day-to-day unless I have a specific need for additional relationship handling.