I have problems with security answer (1.9.3) (hashed passwordFormat) - I think, if I change password, then password salt is changed but security answer is not changed and is not readable after change password?
I changed it this way:
public bool IsCorrectAnswer( string answerToCheck )
return this.PasswordAnswer.Equals( ( YafMembershipProvider.EncodeString( answerToCheck, this.PasswordFormat, this.PasswordSalt, false /*change*/, this.HashHex, this.hashCase, this.hashRemoveChars, this.msCompliant) ) );
and all instances of encode answer to:
newPasswordAnswer = YafMembershipProvider.EncodeString(newPasswordAnswer, currentPasswordInfo.PasswordFormat, currentPasswordInfo.PasswordSalt, false /*change*/, this.HashHex, this.HashCase, this.HashRemoveChars, this.MSCompliant);
Mek,Thanks for fix.I will apply it to mine.
Thanks for fix.I will apply it to mine.