1. Forums
  3. Support and Presales
  5. Developer Members Support
  7. [SOLVED] in CBSubs with special promotion a bug makes password saved in plain text on registration

[SOLVED] in CBSubs with special promotion a bug makes password saved in plain text on registration

8 years 1 month ago - 8 years 1 month ago #280604 by lousyfool
Replied by lousyfool on topic [#5903] in CBSubs with special promotion a bug makes password saved in plain text on registration

krileon wrote: Please PM backend login credentials...


Done - sent to both Beat and yourself.
I've also been recalling my earlier message to Beat since he had not read it yet, and to reduce the "load" on him.

Anyway, it's my clean test environment, as described before with only J! 3.5.1, CB, CBSubs (and Akeeba Backup), nothing else. And the issue persists.

You can do whatever you want with it, afterwards I'll delete it anyway.

Thanks!
The following user(s) said Thank You: krileon

Please Log in to join the conversation.

8 years 3 weeks ago #280752 by krileon
Replied by krileon on topic [#5903] in CBSubs with special promotion a bug makes password saved in plain text on registration
Have reviewed your install. It's a strange combination of configurations causing this.

First your plan is free 1 day duration (suspect duration is insignificant). Second you have "Allow Free Registered Users (without subscriptions)" set to "No". Third you've a promotion increasing the price of the free plan to charge postage.

This trifecta is what is causing it. Once "Allow Free Registered Users (without subscriptions)" is set to "Yes" OR the promotion is removed the problem is gone.

Now that I know how to reliably reproduce this I've updated the ticket with the steps and set its priority to immediate as well as informed Beat of my findings so he can investigate further to fix.

With that said either of the above adjustments will workaround your issue for the time being. You can see my findings on the Passwords userlist where half of the demo users confirm the issue and the other half confirm the workaround.

Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.

Please Log in to join the conversation.

8 years 3 weeks ago - 8 years 3 weeks ago #280755 by krileon
Replied by krileon on topic [#5903] in CBSubs with special promotion a bug makes password saved in plain text on registration
Ok, found the exact cause. Quickfix is as follows.

IN: components/com_comprofiler/plugin/user/plug_cbpaidsubscriptions/cbpaidsubscriptions.php
ON: Lines 579 - 580
FROM:
					$user->block	=	'1';
					$user->store();
TO:
					$user->block		=	'1';
					$cachePwd			=	$user->password;
					$user->password		=	null;
					$user->store();
					$user->password		=	$cachePwd;

User stores during registration can be.. iffy.. so they need to null the password before doing so then revert the null to avoid their storage. We need to improve user store to prevent this from ever happening again somehow in CB it self (we do have functions for this, but CBSubs isn't using them at this time), but the above will fix it and will have fixed for next release.

Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
The following user(s) said Thank You: lousyfool

Please Log in to join the conversation.

8 years 3 weeks ago - 8 years 3 weeks ago #280757 by lousyfool
Replied by lousyfool on topic [#5903] in CBSubs with special promotion a bug makes password saved in plain text on registration
(deleted)

Please Log in to join the conversation.

8 years 3 weeks ago #280758 by krileon
Replied by krileon on topic [#5903] in CBSubs with special promotion a bug makes password saved in plain text on registration
Issue is fixed. See my most recent reply ;). You won't have to change any of your settings.

Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
The following user(s) said Thank You: lousyfool

Please Log in to join the conversation.

8 years 3 weeks ago #280760 by lousyfool
Replied by lousyfool on topic [#5903] in CBSubs with special promotion a bug makes password saved in plain text on registration

krileon wrote: Ok, found the exact cause. Quickfix is as follows.


Hey Kyle,

Just did some testing, and indeed: that fixes it!

Pheeew, glad that's sorted. Thanks a ton for your jumping in!

Bingo - case closed. Trust it'll make it into the next nightly.

Thanks again!

Please Log in to join the conversation.

Moderators: beatnantkrileon
  1. Forums
  3. Support and Presales
  5. Developer Members Support
  7. [SOLVED] in CBSubs with special promotion a bug makes password saved in plain text on registration
Time to create page: 0.221 seconds

Facebook Twitter LinkedIn

    You are here:  
  1. Home
  2. Forums
  3. Support and Presales
  4. Developer Members Support
  5. [SOLVED] in CBSubs with special promotion a bug makes password saved in plain text on registration

Search

Login / Logout

User Menu