Mantis Bugtracker          
testlink.org

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0008369TestLinkUsabilitypublic2018-09-12 10:112018-09-13 17:58
Reporterkengseng 
Assigned Tofman 
PrioritynormalSeverityminorReproducibilityalways
StatusclosedResolutionwon't fix 
PlatformLinuxOSCentOS Linux 7OS Version3.10.0-862.11.6
Product Version1.9.17 (2018 Q1) 
Fixed in Version 
Summary0008369: Disabled 'Lost Password' Feature Unable to Login Further
DescriptionI would like to disable the 'Lost Password' feature on TestLink login page, and made changed to config.inc.php file:
From line below

$tlCfg->authentication['domain'] = array('DB' => array('description' => 'DB', 'allowPasswordManagement' => true)

To

$tlCfg->authentication['domain'] = array('DB' => array('description' => 'DB', 'allowPasswordManagement' => false)

After the file was updated, I had observed the 'Lost Password' feature was disabled, but I was unable to login into TestLink after it.

Please check.

Steps To Reproduce1. On Server side, modify config.inc.php file to disable "Lost Password" feature.
2. On browser side, launch TestLink login page.
3. Observe "Lost Password" feature on login page.
4. Key in username and password into respective textbox.

Actual Result:
Step 3: "Lost Password" is disappeared.
Step 4: Unable to access into TestLink.
TagsNo tags attached.
Database (MySQL,Postgres,etc)MySQL Ver 5.7.23 for linux-glibc2.12 on x86_6
BrowserFirefox Quantum 62.0 (64-bit)
PHP VersionPHP 7.0.31 (cli)
TestCaseID
QA Team - Task Workflow StatusTBD
Attached Files

- Relationships

-  Notes
(0027842)
fman (administrator)
2018-09-12 15:59

do not do changes on config.inc.php, always do changes on custom_config.inc.php
(0027844)
kengseng (reporter)
2018-09-13 04:10

I have put that code in custom_config.inc.php, but still same issue.
(0027845)
fman (administrator)
2018-09-13 05:54

confirmed.
workaround => edit login template and remove change password option
(0027846)
fman (administrator)
2018-09-13 06:02

Be careful with one important thing:

you want to block LOST PASSWORD Feature ?
if yes, the way to get this is NOT setting allowPasswordManagement

May be name is misleading, but this conf was intended to understand if user will be able to manage his/her password according to the authetication method.

Right now seems to exist a weird effect, but this happens because internaly allowPasswordManagement=false is used to say PASSWORD MANAGEMENT SYSTEM IS EXTERNAL.

Do not think that DB with FALSE has sense
(0027848)
kengseng (reporter)
2018-09-13 09:14

My intention is to remove it from GUI display, but the "Lost Password" feature still available on backend.

I will try to edit login template.
(0027849)
fman (administrator)
2018-09-13 17:58

reading config.inc.php is a MUST

/** Enable/disable Users to create accounts on login page */
$tlCfg->user_self_signup = TRUE;

- Issue History
Date Modified Username Field Change
2018-09-12 10:11 kengseng New Issue
2018-09-12 15:59 fman Note Added: 0027842
2018-09-13 04:10 kengseng Note Added: 0027844
2018-09-13 05:54 fman Note Added: 0027845
2018-09-13 05:54 fman Assigned To => fman
2018-09-13 05:54 fman Status new => acknowledged
2018-09-13 06:02 fman Note Added: 0027846
2018-09-13 09:14 kengseng Note Added: 0027848
2018-09-13 17:58 fman Note Added: 0027849
2018-09-13 17:58 fman QA Team - Task Workflow Status => TBD
2018-09-13 17:58 fman Status acknowledged => closed
2018-09-13 17:58 fman Resolution open => won't fix



Copyright © 2000 - 2018 MantisBT Team
Powered by Mantis Bugtracker