#32198: Passwords of users created in admin user interface possibly not hashed?
-----------------------------------------+------------------------
Reporter: jrdjango | Owner: nobody
Type: Uncategorized | Status: new
Component: Uncategorized | Version: 3.0
Severity: Normal | Keywords:
Triage Stage: Unreviewed | Has patch: 0
Needs documentation: 0 | Needs tests: 0
Patch needs improvement: 0 | Easy pickings: 0
UI/UX: 0 |
-----------------------------------------+------------------------
After I created a new user using http://127.0.0.1:8000/admin/users, I see
the plain password of the newly created user in the django admin user
interface.
When I try to log this user in, user = authenticate(request,...) returns
None.
When I create a superuser from the console and go to
http://127.0.0.1:8000/admin/users, I see in the admin user interface that
the superuser's password is hashed.
When I log the superuser in, I don't have any problems.
(I'm new to django, so in case this is nonsense, I beg your pardon.)
--
Ticket URL: <https://code.djangoproject.com/ticket/32198>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-updates/051.fa6c22a10139d622d1dc181f333e0197%40djangoproject.com.
