Mercurial > public > sg101

changeset 40:53b7c681d80b

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Don't send plaintext password in confirmation email for site registration.
author Brian Neal <bgneal@gmail.com>
date Fri, 12 Jun 2009 01:15:49 +0000
parents 5dbfb7fec629
children f21771118fb2
files gpp/accounts/forms.py gpp/templates/accounts/registration_email.txt
diffstat 2 files changed, 1 insertions(+), 7 deletions(-) [+]
line wrap: on
line diff
--- a/gpp/accounts/forms.py	Fri Jun 12 01:06:05 2009 +0000
+++ b/gpp/accounts/forms.py	Fri Jun 12 01:15:49 2009 +0000
@@ -84,7 +84,6 @@
                'user_email' : pending_user.email,
                'activation_link' : activation_link,
                'username' : pending_user.username,
-               'raw_password' : self.cleaned_data['password1'],
                'admin_email' : admin_email,
             })
 
--- a/gpp/templates/accounts/registration_email.txt	Fri Jun 12 01:06:05 2009 +0000
+++ b/gpp/templates/accounts/registration_email.txt	Fri Jun 12 01:15:49 2009 +0000
@@ -1,6 +1,6 @@
 Hello,
 
-Welcome to {{ site_name }}!
+Welcome to {{ site_name }}, {{ username }}!
 
 We have received a request from the email address {{ user_email }} to register an account at {{ site_domain }}.
 
@@ -8,11 +8,6 @@
 
 {{ activation_link }}
 
-Here is the account information:
-
-Username: {{ username }}
-Password: {{ raw_password }}
-
 If you did not register with {{ site_domain }}, simply ignore this email. If you have questions or problems, please send an email to {{ admin_email }}.
 
 Regards,