phpBB3 Password Problem

[ragomez]

FYI: There appears to be a glitch with the way PhotoPost validates user logins for with phpBB3...

phpBB3 uses a completely new password hashing method. When a board (like mine) gets converted from phpBB 2.x to phpBB 3.x, user password hashes are not fully converted to the new hashing method until they login to the board for the first time.

When an old (phpBB2) user logs into the phpBB3 board the conversion is seamless. The user never knows his password hash was converted/updated. The problem I encountered is when one of these old users tries to login into PhotoPost before logging into phpBB3 for the first time, their login attempt fails...

My entire site is heavily integrated with phpBB3... I have a script that will validate users in phpBB3 - regardless of whether their password have been updated... In case you want to incorporate it...

[Chuck S]

It is not really as glitch with us. phpbb2 and phpbb3 are completely different integration methods and not similar in anyway. Our integration was written to match the phpbb3 login. If anything I would call that a phpbb upgrade issue. They should in there conversion script in my mind have a script which updates the passwords on upgrade from phpbb2 to phpbb3.

I know how phpbb2 uses a password it is a simple oneway md5 encryption like most softwares use.

[ragomez]

Yes, I suppose you're correct - major pain though.

Thanks for all your help Chuck!!!

[Chuck S]

yeah I would think they should take care of that on an upgrade but you see alot of strange things.