Passwords kept in plain text after upgrading to 4.0.4.1
Ho
I've noticed that passwords that were previously hashed from version 4.0.3 are not working in 4.0.4.1. After much tweeking and playing around, I found that umbraco had defaulted to storing passwords in plain text. This is irritating as I already have users who have passwords that are hashed. I wonder is there a setting to revert umbraco to storing passwords as hashed again?
I was a little premature there - my file does not have any entry for passwordFormat anywhere in it. Was this something that was missed from the 4.0.4 1 install?
The default is plain text so if your web.config file doesn't have an entry for password format it will be defaulting to plain text. To resolve that there should be a line in the membership provider section of the web.config file begining:
Passwords kept in plain text after upgrading to 4.0.4.1
Ho
I've noticed that passwords that were previously hashed from version 4.0.3 are not working in 4.0.4.1. After much tweeking and playing around, I found that umbraco had defaulted to storing passwords in plain text. This is irritating as I already have users who have passwords that are hashed. I wonder is there a setting to revert umbraco to storing passwords as hashed again?
Thanks
Have to change a settings in web.config's membership provider to
Hope this helps.
Regards,
/Dirk
Thanks Dirk
Hi Dirk
I was a little premature there - my file does not have any entry for passwordFormat anywhere in it. Was this something that was missed from the 4.0.4 1 install?
Hi Carl,
The default is plain text so if your web.config file doesn't have an entry for password format it will be defaulting to plain text. To resolve that there should be a line in the membership provider section of the web.config file begining:
Inside that line, insert
is working on a reply...