Login allowed with space in password



This is probably not an EPiServer thing but wondered if anyone had encontered this before. A deployed site we have authenticates a user when they add a space to the beginning or end of their password. The development version of the site does not behave this way and produces a login failed message which I would expect.

The fact that the same code behaves differently suggests a difference between the environments or config is causing this. I've compared the config files between the two sites and as far as I can tell there is nothing different that would cause this to happen on the deployed site.

It's EPiServer 6 R2.

Any ideas?


Oct 23, 2015 16:36
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.