user update page is updating password field when it should be ignored
Hi Ray, the attached page is a user update page for admins to update user accounts. I've therefore set the password field to only update if an admin enters a value, and be ignored otherwise. However, it's been reported that users are unable to login to their accounts after an admin has made an update. After some testing I can see what's happening - I'm using SHA1 encryption and it's encrypting a blank value and overwriting the current password instead of ignoring it. I found this out by going to an SHA1 encryption site and encrypting a blank value to see what the string is, and sure enough that's what's being added.
I've added connection info to the attached page in a comment at the top if you need it to debug further.