Skip to content

Commit 03c76d8

Browse files
committed
fix: Do not show password dialog when user can not validate password
The password confirmation dialog is always shown unless the user backend does not allow password confirmation. A user backend may explicitly provide that information, but even if it does not that could have been defined in the authentication token with "IToken::SCOPE_SKIP_PASSWORD_VALIDATION" (for example, when "user_oidc" is only used for authentication and user provision is done by another user backend). Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
1 parent daeb1e3 commit 03c76d8

1 file changed

Lines changed: 2 additions & 0 deletions

File tree

lib/private/Template/JSConfigHelper.php

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -70,6 +70,8 @@ public function getConfig(): string {
7070
$userBackendAllowsPasswordConfirmation = $backend->canConfirmPassword($uid) && $this->canUserValidatePassword();
7171
} elseif (isset($this->excludedUserBackEnds[$this->currentUser->getBackendClassName()])) {
7272
$userBackendAllowsPasswordConfirmation = false;
73+
} else {
74+
$userBackendAllowsPasswordConfirmation = $this->canUserValidatePassword();
7375
}
7476
} else {
7577
$uid = null;

0 commit comments

Comments
 (0)