This repository has been archived by the owner on Dec 14, 2018. It is now read-only.

Look into possible bug in Password Reset Token Verification #107

Open

bretterer opened this issue Nov 13, 2015 · 1 comment

Assignees

Labels

bug

Collaborator

bretterer commented Nov 13, 2015

There may be a bug in the SDK based around a urlencoded token from the password reset workflow.

bretterer added the bug label

bretterer self-assigned this

Collaborator Author

bretterer commented Nov 13, 2015

It appears there is an issue with the SAuthC1 signer. Further investigation is needed.

To bypass this issue for now, either urldecode() the token, or set your authentication scheme to use the Basic Signer.

 \Stormpath\Client::$authenticationScheme = Stormpath\Stormpath::BASIC_AUTHENTICATION_SCHEME;

// or

$client = $builder->setAuthenticationScheme(Stormpath::BASIC_AUTHENTICATION_SCHEME)
                     ->build();

bretterer added the hacktoberfest label

bretterer removed the hacktoberfest label

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.