Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Remove maxlength attribute from register password field.

Browse Source 
Pasting a longer password than allowed limit silently truncated to the
max value, resulting in creating an account with a password user is
unaware of because no validation error occurs.

VAN-86
This commit is contained in:
Waheed Ahmed
2020-11-09 17:07:13 +05:00
parent eec8200761
commit 7c974675bb
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lms/templates/student_account/form_field.underscore
View File

@@ -98,7 +98,7 @@
aria-describedby="<%- form %>-<%- name %>-desc <%- form %>-<%- name %>-validation-error"
<% } %>
<% if ( restrictions.min_length ) { %> minlength="<%- restrictions.min_length %>"<% } %>
<% if ( restrictions.max_length ) { %> maxlength="<%- restrictions.max_length %>"<% } %>
<% if ( restrictions.max_length && type !== 'password' ) { %> maxlength="<%- restrictions.max_length %>"<% } %>
<% if ( restrictions.readonly ) { %> readonly <% } %>
<% if ( required ) { %> required<% } %>
<% if ( typeof errorMessages !== 'undefined' ) {