Wired message after password change in user-settings
Hi Thomas & Marcus,
another outcome of these tests hits the password checks after the login, when a user provides a new password in the user settings.
- Admin: setup of be_secure_pw with "enforce", valid-timespan set and 2 mandatory patterns out of 4
- Continued as editor:
- When i do all things correctly, means: providing correct old and two time correct new passwords, all is fine;
- When i do proved the correct old passwd, but not meet all restrictions for the new password, the extension mentions me in the red message about it. This text is not translated. As well, some instance (extension or core) tells the user, that the password is saved. This is an extrem misleading message: The password is indeed - correctly - not saved. The old one is in place. The red and the green message are opposite of each other.
- Additionally, another gree message tells the user that the user settings are saved. Which is basically ok, but may be interpreted wrong by user which are just users and not typo3-nerds.
Expected behavior:
- When a password is declined because the given restrictions are not met,
- The message "Password was not changed!" with it's text about the restrictions should be translated; (Please point out the location - i'll do it)
- The message "Neues Password - Ihr Passwort wurde aktualisiert." must not appear here.
- The message "User settings - saved" should be supressed here
System:
- Typo3 11.5.17
- be_secure_pw 10.1.3
Any clue how to proceed here?
Thx, Thomas