Changing license setting may set password to empty

[sazius]

I encountered this because I've set my web browser (Iceweasel/Firefox 21) to store my MediaGoblin password and automatically fill it in when it deems appropriate.

Steps to reproduce

1. Go to "Change account settings".

2. Web browser automatically fills in "Old password" field, but leaves "New password" field empty (user that only wishes to change license setting will not notice this as it happens automatically).

3. Change license setting if you want (this seems to be optional).

4. Press "Save changes."

5. Log out and try to log in again: your old password doesn't work, the new password is the empty string. (Can be confirmed e.g. by trying to login with the piwigo plugin which allows empty password to be entered.)

The change account settings dialog should either warn of empty password, or simply assume the user does not wish to touch the password if it is left empty. (As was my case.)

[rodney757]

This branch fixes this and moves the change password stuff to a separate view.

​https://github.com/rodney757/mediagoblin/commits/change_pass

I'm also adding support to change email, so the change account settings view will look similar to how it does before this patch. See #705

[Elrond]

That looks good!

Some things:

1. Please don't use tabs for indenting, even templates.
2. Translating half parts does not really work good for all languages. "Change your" + "password". Think of a language that goes like "change password of yours". Either make the whole sentence into a link (my vote!) or put the whole linking in the translation (look for examples around).
3. You might want to move the request.staticdirect('/js/show_password.js') thing from the edit_acccount.html to your new change_pass.html so that people can enable password viewing while typing it. You also need the id="password" on the form field for that to work.

[Elrond]

Merged: d5e035e9193cb9c9faff0e8601e2908bf5285f9c

Yeah, thanks!