The Arcive of Official vBulletin Modifications Site.

Ebi_P · #1 09-16-2009, 07:07 PM

Hello,
i have an integrated Portal with Vbulletin Forum.
for some users it says
"Your password is the same as your username. This is no longer allowed."

which .php file need to modify to ignore this error and allow same username&password login?

Thanks

Lynne · #2 09-16-2009, 07:27 PM

I would strongly suggest against doing that. This was added when there were a series of accounts hacked because of this same username/password thing. I forget when it was, but at that time it seemed there were several threads started every day on vb.com from site owners who were getting spammed by accounts that were taken over do to this issue.

Ebi_P · #3 09-16-2009, 07:44 PM

Greetings Lynne,

Thank you for quick reply.

as i said, i have integrated Portal (VLDPersonals) with Vbulletin Forum. and i have been Disabled Registration on Forum because of registration only should be on Portal and my users can register on Portal and Autologin to froum too.

i have many users with same username&password and i really need to pass this error.
thanks

Lynne · #4 09-16-2009, 08:29 PM

OK, well... doing a Search in Phrases for "Your password is the same as your username." gives me the phrase "username_same_as_password". Doing a search in the 3.8 files for "username_same_as_password" gives me global.php around line 981. That is the code you want to modify.

Ebi_P · #5 09-17-2009, 08:24 AM

Thanks.

i found it but how should it modify?
i don't know which part must be start with // or another modification to resolve this problem:
=========================================

// password same as username?
if (!defined('ALLOW_SAME_USERNAME_PASSWORD') AND $vbulletin->userinfo['userid'])
{
// save the resource on md5'ing if the option is not enabled or guest
if ($vbulletin->userinfo['password'] == md5(md5($vbulletin->userinfo['username']) . $vbulletin->userinfo['salt']))
{
if ((THIS_SCRIPT != 'login' AND THIS_SCRIPT != 'profile') OR (THIS_SCRIPT == 'profile' AND $_REQUEST['do'] != 'editpassword' AND $_POST['do'] != 'updatepassword'))
{
eval(standard_error(fetch_error('username_same_as_ password',
$vbulletin->session->vars['sessionurl']
)));
}

===========================================

Adrian Schneider · #6 09-17-2009, 08:37 AM

Add this to ./includes/config.php:

PHP Code:


			
define('ALLOW_SAME_USERNAME_PASSWORD', true);

Ebi_P · #7 09-17-2009, 08:48 AM

Quote:

Originally Posted by SirAdrian

Add this to ./includes/config.php:

PHP Code:


			
define('ALLOW_SAME_USERNAME_PASSWORD', true);

Hello SirAdrian,

Thanks in advance. it worked.
good Luck dear

Lynne · #8 09-17-2009, 05:47 PM

Quote:

Originally Posted by SirAdrian

Add this to ./includes/config.php:

PHP Code:


			
define('ALLOW_SAME_USERNAME_PASSWORD', true);

I didn't know about that. Good to know! :up:

Adrian Schneider · #9 09-17-2009, 06:24 PM

NP.

Neither did I, but it was in the code he posted for us.

Whenever you see constants used like that, it means you can just define them in config.php as a switch.

James Birkett · #10 09-17-2009, 06:29 PM

Might I recommend that now you've just publicly explained to us you're allowing users to use their username as a password; don't give out your forum URL

@Adrian, I was just about to post that, you beat me to it

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.05256 seconds Memory Usage 2,258KB Queries Executed 13 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)ad_showthread_firstpost (1)ad_showthread_firstpost_sig (1)ad_showthread_firstpost_start (3)bbcode_php (2)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)navbar (3)navbar_link (120)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (10)post_thanks_box (10)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (10)post_thanks_postbit_info (10)postbit (10)postbit_onlinestatus (10)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_postinfo_query fetch_postinfo fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!