Daryl Herzmann added a comment - 06/16/09 10:38 PM

Daryl Herzmann added a comment - 06/16/09 10:38 PM r11076

Gaston Dombiak added a comment - 08/05/09 04:56 PM

Gaston Dombiak added a comment - 08/05/09 04:56 PM I think there is a misunderstanding here that lead to an incorrect fix. The system property "register.password" was being used to specify if users can change their password or not. The system property "xmpp.auth.iqauth" was being used to specify if the old IQ authentication method was available or if SASL should be used instead. Having said that, the error was that the old IQ auth method also allowed to change password and not only authenticate people. AFAIK, the fix would be to modify IQAuthHandler#passwordReset so that it checks on the system property "register.password" to see if users can change their passwords.

Daryl Herzmann added a comment - 08/05/09 05:00 PM

Daryl Herzmann added a comment - 08/05/09 05:00 PM Hi Gato, Thanks for the feedback. You wish for me to commit a patch correcting this or can you do it quick? daryl

Gaston Dombiak added a comment - 08/05/09 05:06 PM

Gaston Dombiak added a comment - 08/05/09 05:06 PM I just checked in my version of the fix. Let me know if you are ok with it. Tks.

Daryl Herzmann added a comment - 08/05/09 05:10 PM

Daryl Herzmann added a comment - 08/05/09 05:10 PM Hehe, I doubt I can challenge your changes! Thanks for the fix.