Tomas Cohen Arazi
8619cd650b
This patch takes a step forward on the password validation endpoint, by
adding the `identifier` parameter and making it be allowed
to be the patron's `cardnumber` or the `userid`.
The current `userid` only validation option is kept as-is.
The implementation relies on `C4::Auth::checkpw` to query for the
patron.
To test:
1. Apply this patches
2. Run:
$ ktd --shell
k$ prove t/db_dependent/api/v1/password_validation.t
=> SUCCESS: Tests pass!
3. Sign off :-D
Signed-off-by: Nick Clemens <nick@bywatersolutions.com>
Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| acquisitions_baskets.t | ||
| acquisitions_funds.t | ||
| acquisitions_orders.t | ||
| acquisitions_vendors.t | ||
| advanced_editor_macros.t | ||
| article_requests.t | ||
| auth.t | ||
| auth_authenticate_api_request.t | ||
| auth_basic.t | ||
| authorised_values.t | ||
| authorities.t | ||
| biblios.t | ||
| cashups.t | ||
| checkouts.t | ||
| cities.t | ||
| clubs_holds.t | ||
| erm_agreements.t | ||
| erm_documents.t | ||
| erm_eholdings_packages.t | ||
| erm_eholdings_resources.t | ||
| erm_eholdings_titles.t | ||
| erm_licenses.t | ||
| erm_users.t | ||
| holds.t | ||
| idp.t | ||
| ill_backends.t | ||
| ill_requests.t | ||
| import_batch_profiles.t | ||
| import_record_matches.t | ||
| item_groups.t | ||
| items.t | ||
| jobs.t | ||
| libraries.t | ||
| oauth.t | ||
| pagination.t | ||
| password_validation.t | ||
| patrons.t | ||
| patrons_accounts.t | ||
| patrons_extended_attributes.t | ||
| patrons_holds.t | ||
| patrons_password.t | ||
| patrons_password_expiration.t | ||
| query.t | ||
| return_claims.t | ||
| search_filters.t | ||
| smtp_servers.t | ||
| stockrotationstage.t | ||
| suggestions.t | ||
| ticket_updates.t | ||
| tickets.t | ||
| transfer_limits.t | ||
| two_factor_auth.t | ||
| unhandled_exceptions.t | ||