[Koha-bugs] [Bug 27812] Remove the ability to transmit a patron's plain text password over email
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Mar 1 17:06:31 CET 2022
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=27812
Martin Renvoize <martin.renvoize at ptfs-europe.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Signed Off |Passed QA
--- Comment #30 from Martin Renvoize <martin.renvoize at ptfs-europe.com> ---
Right, I think we've all agreed now to keep this bug to scope as a security
related issue.
The code works as expected and we've agreed that updating the notices isn't
reliably possible and so a warning should be used instead.
We now have such a warning posted during the database update and added in the
'Text to go in the release notes' field above.
As such, with the QA scripts passing and no nasty regressions found I think we
can safely mark this PQA..
I will now go and QA the dependant bugs and report a new bug for the 'Your
password has been changed' notice I suggested was a good idea here.
PQA
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list