Page 1 of 1
1.6.3 just released - !important password fix
Posted: Wed Feb 22, 2017 12:52 pm
by axew3
Code: Select all
= 1.6.3 =
*Release Date - 22 Feb, 2017*
* Fix correct password check/set between phpBB and WordPress.
All WordPress passwords are now hashed (and checked when required) as phpBB bcrypt().
Once the integration will be uninstalled, WP users with passwords containing certain chars,
will have to reset their password to correctly login into WordPress.
Update!
Re: 1.6.3 just released - !important password fix
Posted: Thu Feb 23, 2017 8:55 am
by Lantern
Keep up the good work !
Re: 1.6.3 just released - !important password fix
Posted: Thu Feb 23, 2017 9:59 am
by axew3
... i've not precise it but on 1.6.3:
old integrated users that had a password that do not was matching, will have pass that do not match also after, if they will not reset the pass on phpBB or WP profile. Maybe it can be not so obvious.
On existent integration, any new user from 1.6.3 on, have password that will match in any case immediately. Others (but it strangely depend on how the password is composed, if contain or not some chars) maybe will have to reset the pass one time, if they had change pass on WP profile, and not phpBB profile.
When an integration start (and existent WP users are transferred), WP users will have to login with phpBB password.
But resuming, now passwords issues are completely and definitively resolved.
Re: 1.6.3 just released - !important password fix
Posted: Fri Feb 24, 2017 9:10 am
by axew3
the file
/wp-content/plugins/wp-w3all-phpbb-integration/addons/bcrypt/
bcrypt.php
has been just updated on repo, to get a valid random seed where
openssl_random_pseudo_bytes()
is not available on some server configuration. If experiencing the message error
'Unsupported hash format.' on updating password or creating user, download wp_w3all plugin and update the mentioned file:
https://wordpress.org/support/topic/fix ... st-8841712