Commit dcacd279 authored by Robert Lyon's avatar Robert Lyon
Browse files

Bug 1722124: Avoid escaping the forgot password message



When using email for a user that has an external auth method.
The message wants to display a link tag and because it is created
from hardcoded info it is safe to display

behatnotneeded

Change-Id: I976bcd6af0dd4914aebb79e261a30b1bf8b21431
Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
parent 3bf14023
......@@ -111,7 +111,7 @@ function forgotpass_validate(Pieform $form, $values) {
FROM {usr} u INNER JOIN {auth_instance} ai ON (u.authinstance = ai.id AND ai.active = 1)
WHERE (LOWER(u.email) = ? OR LOWER(u.username) = ?)
AND ((ai.authname != \'internal\') AND (ai.authname != \'none\'))', array_fill(0, 2, strtolower($values['emailusername'])))) {
$form->set_error('emailusername', get_string('forgotpassuserusingexternalauthentication', 'mahara', get_config('wwwroot') . 'contact.php'));
$form->set_error('emailusername', get_string('forgotpassuserusingexternalauthentication', 'mahara', get_config('wwwroot') . 'contact.php'), false);
}
else {
if (!($authinstance = get_field_sql('SELECT u.authinstance
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment