Handle one time password better

CarlSchwan · CarlSchwan · commit 49989679f124 · 2022-07-26T10:42:02.000+02:00
Signed-off-by: Carl Schwan &lt;carl@carlschwan.eu&gt;
diff --git a/lib/private/Authentication/Token/PublicKeyTokenProvider.php b/lib/private/Authentication/Token/PublicKeyTokenProvider.php
@@ -401,7 +401,7 @@ public function updatePasswords(string $uid, string $password) {
 		$this->cache->clear();
 
 		// prevent setting an empty pw as result of pw-less-login
-		if ($password === '') {
+		if ($password === '' || !$this->config->getSystemValueBool('auth.storeCryptedPassword', true)) {
 			return;
 		}
 
diff --git a/tests/lib/Authentication/Token/PublicKeyTokenProviderTest.php b/tests/lib/Authentication/Token/PublicKeyTokenProviderTest.php
@@ -66,6 +66,10 @@ protected function setUp(): void {
 				['secret', '', '1f4h9s'],
 				['openssl', [], []],
 			]);
+		$this->config->method('getSystemValueBool')
+			->willReturnMap([
+				['auth.storeCryptedPassword', true, true],
+			]);
 		$this->logger = $this->createMock(LoggerInterface::class);
 		$this->timeFactory = $this->createMock(ITimeFactory::class);
 		$this->time = 1313131;

Original file line number	Diff line number	Diff line change
`@@ -401,7 +401,7 @@ public function updatePasswords(string $uid, string $password) {`
`401`	`401`	`$this->cache->clear();`
`402`	`402`
`403`	`403`	`// prevent setting an empty pw as result of pw-less-login`
`404`		`- if ($password === '') {`
	`404`	`+ if ($password === '' \|\| !$this->config->getSystemValueBool('auth.storeCryptedPassword', true)) {`
`405`	`405`	`return;`
`406`	`406`	`}`
`407`	`407`