Wouter Haffmans issues

Repositories
Issues
Comments

Results 1 issues of


                                            Wouter Haffmans

[API] Change password fails on old password check

The Change Password API ('/userapi/password') doesn't properly validate the old password. It calls the `PasswordHasher.Hash` directly (which generates a hash with a new salt), rather than `PasswordHasher.Verify`. See RegistrationController.cs line...