Comments (6)
Hello @kengibous
I discovered an issue with password reset digests not being found in the cache. It turns out that the digest value is added to the cache in its original state (unencoded). That digest is then urlencoded utf8 and emailed to the requester. When the user clicks on the return link, the digest value is improperly urlencoded. This results in the digest value not being found in the cache and the user is unable to change their password.
In HomeController.cs, please change line 51 from:
digest = HttpUtility.UrlDecode(digest);
to
digest = HttpUtility.UrlDecode(digest,Encoding.UTF8);
Thanks!
from bonobo-git-server.
@kengibous Any chance of turning that into a PR? Thank you.
from bonobo-git-server.
@RedX2501 @KY4U Thank you both pull request has been sent
from bonobo-git-server.
Merged with 353ee20
from bonobo-git-server.
hi, I see this has been closed but it's still broken in the latest release. Any chance this will be fixed soon. I am running version 5.2.0.0 and have the same issue as commented by KY4U on Aug 7, 2015.
Thanks
from bonobo-git-server.
I think you'll find it's fixed in 6.0 - you can get the latest pre-release version of that from the AppVeyor link on the front page (look in the AppVeyor Artifacts) .
Take a backup of you database before upgrading, because 6.0 does a big database mod.
from bonobo-git-server.
Related Issues (20)
- Is the current commit 6.5.0? HOT 3
- How can I put the repository folder to another share folder?
- Install after compile
- Getting SourceLink to work with Bonobo (git archive problem?) HOT 7
- Trivial Versioning
- 使用vs推送的时候一直提示本地低于远程版本 无法同步 Merge branch 'master' of ht HOT 6
- git clone failed large project
- Active directory user - login problem with special Char
- too many dependencies,support self contained
- Tags Not Showing on Tags Page
- is it somehow possible to search within the repo
- Feature Request: Restrict user access to selected files and folder in repository
- Restrict push into master branch
- Enabling SSH access to repositories
- Database Encryption
- Redirect loop with .NET 4.8
- Certain Characters in Passwords Cause Authentication Error in GIT Client
- 请求添加同步(镜像)功能
- If this is dead, please tell us HOT 1
- .git/info/refs not valid: is this a git repository?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from bonobo-git-server.