base/credential: fix password type ( use str )

c7c6c10f · Jérome Perrin · Arnaud Fontaine · 0791c269 · c7c6c10f · c7c6c10f
Commit c7c6c10f authored May 20, 2024 by Jérome Perrin Committed by Arnaud Fontaine Jul 15, 2024
3 changed files
--- a/bt5/erp5_authentication_policy/TestTemplateItem/portal_components/test.erp5.testAuthenticationPolicy.py
+++ b/bt5/erp5_authentication_policy/TestTemplateItem/portal_components/test.erp5.testAuthenticationPolicy.py
@@ -228,13 +228,13 @@ class TestAuthenticationPolicy(ERP5TypeTestCase):
    self.tic()

    # password change date should be saved as well hashed old password value
-    old_password = login.getPassword().decode()
+    old_password = login.getPassword()
    self.assertSameSet([old_password], [x.getPassword() for x in self._getPasswordEventList(login)])

    # .. test one more time to check history of password is saved in a list
    login.setPassword('123456789')
    self.tic()
-    old_password1 = login.getPassword().decode()
+    old_password1 = login.getPassword()

    # password change date should be saved as well hashed old password value
    self.assertSameSet([old_password1, old_password], [x.getPassword() for x in self._getPasswordEventList(login)])
@@ -242,29 +242,29 @@ class TestAuthenticationPolicy(ERP5TypeTestCase):
    # other methods (_setPassword)...
    login._setPassword('123456789-1')
    self.tic()
-    old_password2 = login.getPassword().decode()
+    old_password2 = login.getPassword()
    self.assertSameSet([old_password2, old_password1, old_password], \
                     [x.getPassword() for x in self._getPasswordEventList(login)])

    # other methods (_forceSetPassword)...
    login._forceSetPassword('123456789-2')
    self.tic()
-    old_password3 = login.getPassword().decode()
+    old_password3 = login.getPassword()
    self.assertSameSet([old_password3, old_password2, old_password1, old_password], \
                     [x.getPassword() for x in self._getPasswordEventList(login)])


    # other methods (setEncodedPassword)...
-    login.setEncodedPassword(b'123456789-3')
+    login.setEncodedPassword('123456789-3')
    self.tic()
-    old_password4 = login.getPassword().decode()
+    old_password4 = login.getPassword()
    self.assertSameSet([old_password4, old_password3, old_password2, old_password1, old_password], \
                     [x.getPassword() for x in self._getPasswordEventList(login)])

    # other methods (edit)...
    login.edit(password='123456789-4')
    self.tic()
-    old_password5 = login.getPassword().decode()
+    old_password5 = login.getPassword()
    self.assertSameSet([old_password5, old_password4, old_password3, old_password2, old_password1, old_password], \
                     [x.getPassword() for x in self._getPasswordEventList(login)])


--- a/bt5/erp5_base/MixinTemplateItem/portal_components/mixin.erp5.EncryptedPasswordMixin.py
+++ b/bt5/erp5_base/MixinTemplateItem/portal_components/mixin.erp5.EncryptedPasswordMixin.py
@@ -84,8 +84,6 @@ class EncryptedPasswordMixin(object):
      value,
      format='default',  # pylint: disable=redefined-builtin
  ):
-    if value is not None and not isinstance(value, bytes):
-      value = value.encode()
    password = getattr(aq_base(self), 'password', None)
    if password is None or isinstance(password, basestring):
      password = self.password = PersistentMapping()

--- a/bt5/erp5_credential/SkinTemplateItem/portal_skins/erp5_credential/CredentialRequest_createPersonAndAssignment.py
+++ b/bt5/erp5_credential/SkinTemplateItem/portal_skins/erp5_credential/CredentialRequest_createPersonAndAssignment.py
@@ -35,7 +35,7 @@ for portal_type in related_portal_type:
 context.CredentialRequest_updateLocalRolesOnSecurityGroups()

 if password is not None:
-  if password.startswith(b'{SSHA}'):
+  if password.startswith('{SSHA}'):
    #password is encoded, set it to None to script witch send the password to user
    password = None
 # Send notification in activities