Releases: derhansen/fe_change_pwd
Release list
TYPO3 10 compatibility
[!!!][FEATURE] Move signal slot to controller #33
Migration: If you used the old signal slot in FrontendUserService,
just use the new signal slot in PasswordController
[TASK] Added TYPO3 10 compatibility #32
[TASK] Make PwnedPasswordService work with proxy servers #31
[TASK] Removed TYPO3 8.7 compatibility
Minor bugfixes and a new signal
Security Fix
This release contains an important security fix to mitigate a CSRF issue. Please update ASAP.
Added "Require current password" feature
[FEATURE] Require current password for password change #21
Note, that the new feature is disabled by default. Use plugin.tx_fechangepwd.settings.requireCurrentPassword.enabled = 1 to enable.
Check new password against old and minor improvement
[FEATURE] Check new password against old password #20
This new setting is on by default.
[TASK] Added option to show flash message after password change #17
This setting "afterPasswordChangeAction = redirect" is the new
default, so now only a flash message is shown when the password
is successfully updated. To get old functionality back, change the
TypoScript setting to "afterPasswordChangeAction = view"
Minor bugfix for TYPO3 9.5
[TASK] Ensure TSFE->tmpl is parsed when empty #18
Bugfix release for TYPO3 9.5
[BUGFIX] Ensure TypoScript settings are available for cached pages #18
It is highly recommended to update the extension to this release if used with TYPO3 9.5
Ensure configured password hashing is used in TYPO3 9.5
[TASK] Ensure strong password hashing in TYPO3 9.5
The extension did fall back to Phpass Password Hashing in TYPO3 9.5. With this change, the configured Password Hashing Service is used.
See: https://typo3.org/security/advisory/typo3-psa-2019-006/
Minor bugfix
[TASK] Fixed minor typos in german localization