password should be passed to action hook, and it was being ovewritten

11 years ago · 74f23497dc
parent 4fad334e18
commit 74f23497dc
2 changed files with 6 additions and 3 deletions
--- a/src/login.js
+++ b/src/login.js
@ -34,8 +34,10 @@ var user = require('./user'),
 							message: "user-banned"
 						});
 					}
+					console.log(password);
+					console.log(JSON.stringify(userData));

-					bcrypt.compare(password, userData.password, function(err, res) {
+					bcrypt.compare(password, userData.password || '', function(err, res) {
 						if (err) {
 							winston.err(err.message);
 							next(new Error('bcrypt compare error'));
--- a/src/user.js
+++ b/src/user.js
@ -84,6 +84,7 @@ var bcrypt = require('bcrypt'),

 				var gravatar = User.createGravatarURLFromEmail(userData.email);
 				var timestamp = Date.now();
+				var password = userData.password;

 				userData = {
 					'uid': uid,
@ -127,8 +128,8 @@ var bcrypt = require('bcrypt'),
 				// Join the "registered-users" meta group
 				groups.joinByGroupName('registered-users', uid);

-				if (userData.password) {
-					User.hashPassword(userData.password, function(err, hash) {
+				if (password) {
+					User.hashPassword(password, function(err, hash) {
 						User.setUserField(uid, 'password', hash);
 						callback(null, uid);
 					});