Hash passwords as soon as a new user is created

2023-11-16 00:54:56 +00:00 · 2023-11-16 00:54:56 +00:00 · aaed886890
commit aaed886890
parent b1553135fc
3 changed files with 4 additions and 3 deletions
--- a/.rubocop_todo.yml
+++ b/.rubocop_todo.yml
@ -61,7 +61,7 @@ Metrics/BlockNesting:
 # Offense count: 26
 # Configuration parameters: CountComments, CountAsOne.
 Metrics/ClassLength:
-  Max: 285
+  Max: 286
 # Offense count: 59
 # Configuration parameters: AllowedMethods, AllowedPatterns.
--- a/app/controllers/users_controller.rb
+++ b/app/controllers/users_controller.rb
@ -104,11 +104,11 @@ class UsersController < ApplicationController
        render :action => "new"
      elsif current_user.auth_provider.present?
        # Verify external authenticator before moving on
-        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt", "pass_crypt_confirmation")
+        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt")
        redirect_to auth_url(current_user.auth_provider, current_user.auth_uid), :status => :temporary_redirect
      else
        # Save the user record
-        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt", "pass_crypt_confirmation")
+        session[:new_user] = current_user.attributes.slice("email", "display_name", "pass_crypt")
        redirect_to :action => :terms
      end
    end
--- a/app/models/user.rb
+++ b/app/models/user.rb
@ -115,6 +115,7 @@ class User < ApplicationRecord
  alias_attribute :created_at, :creation_time
  after_initialize :encrypt_password
  before_save :encrypt_password
  before_save :update_tile
  after_save :spam_check