Page Menu
Home
Phabricator
Search
Configure Global Search
Log In
Files
F14127920
D21487.id51142.diff
No One
Temporary
Actions
View File
Edit File
Delete File
View Transforms
Subscribe
Mute Notifications
Award Token
Flag For Later
Size
840 B
Referenced Files
None
Subscribers
None
D21487.id51142.diff
View Options
diff --git a/src/applications/auth/engine/PhabricatorAuthPasswordEngine.php b/src/applications/auth/engine/PhabricatorAuthPasswordEngine.php
--- a/src/applications/auth/engine/PhabricatorAuthPasswordEngine.php
+++ b/src/applications/auth/engine/PhabricatorAuthPasswordEngine.php
@@ -181,6 +181,12 @@
$normal_password = phutil_utf8_strtolower($raw_password);
if (strlen($normal_password) >= $minimum_similarity) {
foreach ($normal_map as $term => $source) {
+
+ // See T2312. This may be required if the term list includes numeric
+ // strings like "12345", which will be cast to integers when used as
+ // array keys.
+ $term = phutil_string_cast($term);
+
if (strpos($term, $normal_password) === false &&
strpos($normal_password, $term) === false) {
continue;
File Metadata
Details
Attached
Mime Type
text/plain
Expires
Mon, Dec 2, 1:36 AM (21 h, 51 m)
Storage Engine
blob
Storage Format
Encrypted (AES-256-CBC)
Storage Handle
6814242
Default Alt Text
D21487.id51142.diff (840 B)
Attached To
Mode
D21487: Guarantee terms in PhabricatorAuthPasswordEngine are strings
Attached
Detach File
Event Timeline
Log In to Comment