Hash passwords as soon as a new user is created

2023-11-16 00:54:56 +00:00 · 2023-11-16 00:54:56 +00:00 · aaed886890
commit aaed886890
parent b1553135fc
3 changed files with 4 additions and 3 deletions
--- a/app/controllers/users_controller.rb
+++ b/app/controllers/users_controller.rb
@ -104,11 +104,11 @@ class UsersController < ApplicationController
        render :action => "new"
      elsif current_user.auth_provider.present?
        # Verify external authenticator before moving on
-        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt", "pass_crypt_confirmation")
+        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt")
        redirect_to auth_url(current_user.auth_provider, current_user.auth_uid), :status => :temporary_redirect
      else
        # Save the user record
-        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt", "pass_crypt_confirmation")
+        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt")
        redirect_to :action => :terms
      end
    end