User password update via REST API is not hashed #14339
Labels
severity: medium
Results in substantial degraded or broken functionality for specfic workflows
status: accepted
This issue has been accepted for implementation
type: bug
A confirmed report of unexpected behavior in the application
NetBox version
v3.6.5
Python version
3.11
Steps to Reproduce
{id}
:Expected Behavior
The password stored on the database must be hashed, so user with the password updated is able to login on the Netbox instance.
Observed Behavior
The password stored on the database is not hashed, so user with the password updated is not able to login on the Netbox instance.
Connected on the database, do (where
{id}
is the created user's id) :SELECT password FROM auth_user WHERE id={id}
Result
"newpassword"
The text was updated successfully, but these errors were encountered: