View Issue Details

IDProjectCategoryView StatusLast Update
0015640phplist applicationInterface - Backendpublic22-02-13 00:04
Reporterdfranco 
PrioritynormalSeverityminorReproducibilityalways
Status resolvedResolutionfixed 
Product Version2.10.16 
Target Version2.10.XFixed in Version2.11.6 
Summary0015640: Hide password value in admin page
DescriptionI think that the input field type in the admin page should be password and not text as it's currently.

It can be simply modified by modifying the code such as
 <input type="password" ... />

I didn't check if other pages have the same problem and I can create a patch if you want for this. Just tell me.

(Seen in version 2.10.17 as well)

Best regards
TagsNo tags attached.

Activities

michiel

06-10-11 20:38

manager   ~0051409

I'm trying to keep changes in 2.10 to a minimum. The admin password mechanism has changed a lot in 2.11 including a token mechanism to change the password. I'd like to concentrate on stabilising 2.11 instead of doing too many things in 2.10. 2.10 is mostly a security fix branch.

Changing it to be a password field would require adding two (to check for typos) fields, verifying the input, returning an error when not equal etc. Instead in 2.11 it's all worked out fine, including storing it encrypted.

michiel

06-10-11 20:40

manager   ~0051410


marking for 2.10 anyway, and if you can provide a patch, that's fine, but I'm not going to spend any further time on it. My main efforts are in 2.11.X