Closed omelkonian closed 8 years ago
When user is not found on the db, we automatically register them with password=None, as seen here: https://github.com/inveniosoftware/invenio-oauthclient/blob/master/invenio_oauthclient/utils.py#L92-L103
password=None
But Passlib does not allow None passwords, although it allows empty ones (''). To verify it, run:
None
''
>>> from passlib.hash import oracle10 >>> hash = oracle10.encrypt(None, user='admin') >>> hash = oracle10.encrypt('', user='admin')
Therefore, if the user is not already registered, an internal server error will occur.
When user is not found on the db, we automatically register them with
password=None
, as seen here: https://github.com/inveniosoftware/invenio-oauthclient/blob/master/invenio_oauthclient/utils.py#L92-L103But Passlib does not allow
None
passwords, although it allows empty ones (''
). To verify it, run:Therefore, if the user is not already registered, an internal server error will occur.