Guarantee terms in PhabricatorAuthPasswordEngine are strings
ClosedPublic
Actions

Authored by epriestley on Nov 3 2020, 6:37 PM.

Details

Reviewers: None
Maniphest Tasks: T2312: Modifying PHP
Commits: rPae5a38f3349f: Guarantee terms in PhabricatorAuthPasswordEngine are strings

Summary

Ref T2312. Numeric strings are read out of arrays as integers, and modern PHP raises appropriate warnings when they're then treated as strings.

For now, cast the keys to strings explicitly (we know we inserted only strings). In the future, introduction of a StringMap type or similar might be appropriate.

Test Plan

Added "abc.12345.xyz" to the blocklist, changed my VCS password.
Before: fatal when trying to "strpos()" an integer.
After: password change worked correctly.

Diff Detail

Repository

rP Phabricator

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

epriestley created this revision.Nov 3 2020, 6:37 PM

Fix a local issue.

Harbormaster completed remote builds in B24957: Diff 51143.Nov 3 2020, 6:56 PM

epriestley requested review of this revision.Nov 3 2020, 6:56 PM

This revision was not accepted when it landed; it landed in state Needs Review.Nov 3 2020, 7:04 PM

Closed by commit rPae5a38f3349f: Guarantee terms in PhabricatorAuthPasswordEngine are strings (authored by epriestley). · Explain Why

This revision was automatically updated to reflect the committed changes.

epriestley added a commit: rPae5a38f3349f: Guarantee terms in PhabricatorAuthPasswordEngine are strings.

Revision Contents
Changeset List

Path

Size

src/

applications/

auth/

engine/

PhabricatorAuthPasswordEngine.php

6 lines

Diff 51144

View Options

src/applications/auth/engine/PhabricatorAuthPasswordEngine.php

Guarantee terms in PhabricatorAuthPasswordEngine are stringsClosedPublicActions