[horde] Hacking passwd to work in H4

Jan Schneider jan at horde.org
Sun Jul 17 11:07:06 UTC 2011


Zitat von stephan at admin.nabira.de:

> Zitat von stephan at admin.nabira.de:
>
>> Hi,
>>
>> I was trying out passwd from the git-repository with H4 and  
>> realized that my browser is waiting indefinetely after a successful  
>> password change.
>>
>> I remember to have read that this is due to a design problem which  
>> prevents passwd from resetting the credentials for all applications  
>> and that a forced logout was discussed as workaround. But it seams  
>> this is not implemented yet, is it?
>>
>> I tried to force a logout myself by inserting into  
>> passwd/lib/Passwd.php on line 109 the following code:
>> $GLOBALS['registry']->clearAuth(true);
>>
>> This however does not work quite as expected. I get logged out  
>> alright, but the user does not see this. He gets the "Password  
>> sucessfully changed" screen with a menu-bar on the left continually  
>> showing "Loading..." and a rudimentary top menu bar.
>>
>> If I click on any of the remaining links or buttons I get  
>> functionality as far as a logged out user gets (for example filing  
>> problems seems to be possible). If I click on the logout button, I  
>> get the login-screen as I would like. But I'm not sure all users  
>> will try that.
>>
>> Any ideas on a more elegant solution than my brute-force one?
>>
>> Greetz
>> Stephan
>
> My sincere apologies for the pushing of this topic, but:
> Has anyone any ideas on this?

You want to user $registry->authenticateFailure, not clearAuth.

Jan.

-- 
Do you need professional PHP or Horde consulting?
http://horde.org/consulting/



More information about the horde mailing list