The solution to notify other applications that the password is empty when ucenter changes the password!

List of user tables in UCenter database

After modifying the user password in the A application, in the notification list of updating the user password, it is found that the password is empty!

Password is empty should be based on security considerations, the analysis code execution process, the solution is as follows, in Password I use MD5 encryption:

Notification program after ucenter changes the password in the background:
ucenter.kchmc.net/control/admin/user.php

//$_env[‘note’]->add(updatepw,username=.urlencode($username).&password=);
$_env[‘note’]->add(updatepw,username=.urlencode($username).&password=.md5($orgpassword));

UCenter Notification Program:
ucenter.kchmc.net/control/user.php

//$_env[‘note’]->add(updatepw,username=.urlencode($username).&password=);
$_env[‘note’]->add(updatepw,username=.urlencode($username).&password=.md5($newpw));

If the password is changed in the A application, and other applications that need to be notified use the independent user database, you need to modify the corresponding code of the UCenter client (UC_Client):
kchmc.net/phpsso_server/api/uc_client/control/user.php

//$_env[‘note’]->add(updatepw,username=.urlencode($username).&password=);
$_env[‘note’]->add(updatepw,username=.urlencode($username).&password=.md5($newpw));

Notification form after updating the program!

Now it is possible that kchmc.net and ucenter.kchmc.net have updated the password, but other applications may not be notified, or The notification fails, and now one solution is to continue to wait, or manually operate the notification again in the ucenter.kchmc.net notification list!