Security notification is not sent when an admin changes the password of a user (#32199).

Patch by Yuichi HARADA.


git-svn-id: http://svn.redmine.org/redmine/trunk@21006 e93f8b46-1217-0410-a6f0-8f06a7374b81
This commit is contained in:
Go MAEDA
2021-05-24 06:28:23 +00:00
parent 97c2607da4
commit a8a87ef47e
2 changed files with 21 additions and 1 deletions

View File

@@ -153,7 +153,8 @@ class UsersController < ApplicationController
end
def update
if params[:user][:password].present? && (@user.auth_source_id.nil? || params[:user][:auth_source_id].blank?)
is_updating_password = params[:user][:password].present? && (@user.auth_source_id.nil? || params[:user][:auth_source_id].blank?)
if is_updating_password
@user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation]
end
@user.safe_attributes = params[:user]
@@ -165,6 +166,7 @@ class UsersController < ApplicationController
if @user.save
@user.pref.save
Mailer.deliver_password_updated(@user, User.current) if is_updating_password
if was_activated
Mailer.deliver_account_activated(@user)
elsif @user.active? && params[:send_information] && @user != User.current