Bug #92960
closed
PHP Warning: hash_equals(): Expected known_string to be a string, null given when clicking forgot-link after setting password
100%
Description
If the felogin_forgotHash of the user record is empty a PHP Warning is logged to sys_log.
How to reproduce:
1. Have a fe_login with a valid user and the forgot password functionality enabled
2. Go to reset password, enter your username and receive an email with a link to set a new password
3. click the link and set a new password
4. click the link again
Now a PHP warning is logged to sys_log:
PHP Warning: hash_equals(): Expected known_string to be a string, null given in /typo3_src-9.5.23/typo3/sysext/felogin/Classes/Controller/FrontendLoginController.php line 348
Updated by Gerrit Code Review almost 4 years ago
- Status changed from New to Under Review
Updated by Gerrit Code Review almost 4 years ago
Patch set 1 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 2 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 3 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 4 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 5 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 6 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 7 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/66951
Updated by Gerrit Code Review almost 4 years ago
Patch set 1 for branch 9.5 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/67308
Updated by Stephan Großberndt almost 4 years ago
- Status changed from Under Review to Resolved
- % Done changed from 0 to 100
Applied in changeset 72d8bd0e1a59dd62f022d844252c1ab0238e4ab9.
Updated by