From 87b792b2b61c8232c2facecf6feb2ce5f3fa2b9e Mon Sep 17 00:00:00 2001 From: Henri-Damien LAURENT Date: Tue, 20 Oct 2009 15:09:51 +0200 Subject: [PATCH] 3.0.x: ce353e7 bug #3674 allow users creation with disabled password --- C4/Members.pm | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/C4/Members.pm b/C4/Members.pm index 4b525f0623..da1bf37ee7 100644 --- a/C4/Members.pm +++ b/C4/Members.pm @@ -680,7 +680,7 @@ Returns the borrowernumber sub AddMember { my (%data) = @_; my $dbh = C4::Context->dbh; - $data{'userid'} = '' unless $data{'password'}; + $data{'password'} = '!' if (not $data{'password'} and $data{'userid'}); $data{'password'} = md5_base64( $data{'password'} ) if $data{'password'}; $data{'borrowernumber'}=InsertInTable("borrowers",\%data); # mysql_insertid is probably bad. not necessarily accurate and mysql-specific at best. -- 2.39.5