tdsds.com/gitea
1
1
Fork 0
mirror of https://github.com/go-gitea/gitea synced 2025-08-13 13:08:19 +00:00
Code Releases Activity

Fix missing password length check when change password (#3039) (#3071)

Browse Source 
* fix missing password length check when change password

* add tests for change password
This commit is contained in:
Lunny Xiao
2017-12-03 09:49:25 +08:00
committed by GitHub
parent ce4a52c22c
commit 3d688bd2cc
3 changed files with 75 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
routers/user/setting.go
View File

@@ -223,7 +223,9 @@ func SettingsSecurityPost(ctx *context.Context, form auth.ChangePasswordForm) {
return
}
if ctx.User.IsPasswordSet() && !ctx.User.ValidatePassword(form.OldPassword) {
if len(form.Password) < setting.MinPasswordLength {
ctx.Flash.Error(ctx.Tr("auth.password_too_short", setting.MinPasswordLength))
} else if ctx.User.IsPasswordSet() && !ctx.User.ValidatePassword(form.OldPassword) {
ctx.Flash.Error(ctx.Tr("settings.password_incorrect"))
} else if form.Password != form.Retype {
ctx.Flash.Error(ctx.Tr("form.password_not_match"))