00474: unaccepted password character(s)

Summary: unaccepted password character(s)
Created: 2005-07-19 18:41
Status: Closed
Category: Closed
From: xerxes?
Priority: 3
Version: 2.0.beta49
OS: WinXP/Apache/5.1.0b2

Description: When I use

$DefaultPasswords['admin'] = crypt('password');

It creates an all access and you will never see the password dialog box. However, if you use a number as the first character (crypt('1password')), it'll work correctly and request the password when necessary.

Any chance that the password had previously been entered in the browser session? By default, PmWiki remembers all passwords that are entered during a session, so if "password" had already been entered sometime during the current browser session, then you would be automatically authorized as the admin (i.e., w/o a prompt) until the session expires or all of the browser's windows are closed. But it's because you had already supplied the password in your browser session -- others would still be prompted for a password.

In particular, I've tested this at http://www.pmwiki.org/work/pmwiki-2.0.beta49/pmwiki.php with the following config.php settings:

    $ cat local/config.php
      $DefaultPasswords['admin'] = crypt('password');
      $DefaultPasswords['edit'] = '*';

and editing a page does correctly prompt for a password.


I tested it and I finally got it work. The strange thing was with the password that started with a character (when I tried it) it would never ask for a password, and I cleared out everything (cache, history, cookies, sessions, etc), closed and reopened the browser, same thing still wouldn't ever ask. However, when I started it with a number, it would always ask for a password. Well never mind, it all works now, thanks for your time.