extern/egroupware
1
0
Fork 1
mirror of https://github.com/EGroupware/egroupware.git synced 2025-02-04 04:19:41 +01:00
Code Issues Packages Projects Releases Wiki Activity

2 bugfixes and some clean-ups:

Browse Source 
- db::Halt_on_Error was not set, because of typo
- new md5 encrypted PW in cookie was again md5 encoded on each submit
This commit is contained in:
Ralf Becker 2005-05-19 06:32:42 +00:00
parent c14db352f2
commit 3adb0e569a
1 changed files with 17 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
setup/inc/class.setup.inc.php
View File

@ -75,7 +75,7 @@
if ($connect_and_setcharset) if ($connect_and_setcharset)
{ {
$this->Halt_On_Error = 'no'; // table might not be created at that stage $this->db->Halt_On_Error = 'no'; // table might not be created at that stage
// Set the DB's client charset if a system-charset is set // Set the DB's client charset if a system-charset is set
$this->db->query("select config_value from phpgw_config WHERE config_app='phpgwapi' and config_name='system_charset'",__LINE__,__FILE__); $this->db->query("select config_value from phpgw_config WHERE config_app='phpgwapi' and config_name='system_charset'",__LINE__,__FILE__);
@ -203,9 +203,9 @@
if ($this->check_auth($FormUser,$FormPW,$GLOBALS['egw_info']['server']['header_admin_user'], if ($this->check_auth($FormUser,$FormPW,$GLOBALS['egw_info']['server']['header_admin_user'],
$GLOBALS['egw_info']['server']['header_admin_password'])) $GLOBALS['egw_info']['server']['header_admin_password']))
{ {
$this->set_cookie('HeaderUser',"$FormUser",$expire,'/'); $this->set_cookie('HeaderUser',$FormUser,$expire,'/');
$this->set_cookie('HeaderPW',md5("$FormPW"),$expire,'/'); $this->set_cookie('HeaderPW',md5($FormPW),$expire,'/');
$this->set_cookie('ConfigLang',"$ConfigLang",$expire,'/'); $this->set_cookie('ConfigLang',$ConfigLang,$expire,'/');
return True; return True;
} }
else else
@ -222,9 +222,9 @@
if ($this->check_auth($HeaderUser,$HeaderPW,$GLOBALS['egw_info']['server']['header_admin_user'], if ($this->check_auth($HeaderUser,$HeaderPW,$GLOBALS['egw_info']['server']['header_admin_user'],
$GLOBALS['egw_info']['server']['header_admin_password'])) $GLOBALS['egw_info']['server']['header_admin_password']))
{ {
$this->set_cookie('HeaderUser',"$HeaderUser",$expire,'/'); $this->set_cookie('HeaderUser',$HeaderUser,$expire,'/');
$this->set_cookie('HeaderPW',md5("$HeaderPW"),$expire,'/'); $this->set_cookie('HeaderPW',$HeaderPW,$expire,'/');
$this->set_cookie('ConfigLang',"$ConfigLang",$expire,'/'); $this->set_cookie('ConfigLang',$ConfigLang,$expire,'/');
return True; return True;
} }
else else
@ -244,12 +244,12 @@
$this->check_auth($FormUser,$FormPW,@$GLOBALS['egw_domain'][$FormDomain]['config_user'], $this->check_auth($FormUser,$FormPW,@$GLOBALS['egw_domain'][$FormDomain]['config_user'],
@$GLOBALS['egw_domain'][$FormDomain]['config_passwd'])) @$GLOBALS['egw_domain'][$FormDomain]['config_passwd']))
{ {
$this->set_cookie('ConfigUser',"$FormUser",$expire,'/'); $this->set_cookie('ConfigUser',$FormUser,$expire,'/');
$this->set_cookie('ConfigPW',md5("$FormPW"),$expire,'/'); $this->set_cookie('ConfigPW',md5($FormPW),$expire,'/');
$this->set_cookie('ConfigDomain',"$FormDomain",$expire,'/'); $this->set_cookie('ConfigDomain',$FormDomain,$expire,'/');
/* Set this now since the cookie will not be available until the next page load */ /* Set this now since the cookie will not be available until the next page load */
$this->ConfigDomain = "$FormDomain"; $this->ConfigDomain = $FormDomain;
$this->set_cookie('ConfigLang',"$ConfigLang",$expire,'/'); $this->set_cookie('ConfigLang',$ConfigLang,$expire,'/');
return True; return True;
} }
else else
@ -266,10 +266,10 @@
if ($this->check_auth($ConfigUser,$ConfigPW,@$GLOBALS['egw_domain'][$this->ConfigDomain]['config_user'], if ($this->check_auth($ConfigUser,$ConfigPW,@$GLOBALS['egw_domain'][$this->ConfigDomain]['config_user'],
@$GLOBALS['egw_domain'][$this->ConfigDomain]['config_passwd'])) @$GLOBALS['egw_domain'][$this->ConfigDomain]['config_passwd']))
{ {
$this->set_cookie('ConfigUser',"$ConfigUser",$expire,'/'); $this->set_cookie('ConfigUser',$ConfigUser,$expire,'/');
$this->set_cookie('ConfigPW',md5("$ConfigPW"),$expire,'/'); $this->set_cookie('ConfigPW',$ConfigPW,$expire,'/');
$this->set_cookie('ConfigDomain',$this->ConfigDomain,$expire,'/'); $this->set_cookie('ConfigDomain',$this->ConfigDomain,$expire,'/');
$this->set_cookie('ConfigLang',"$ConfigLang",$expire,'/'); $this->set_cookie('ConfigLang',$ConfigLang,$expire,'/');
return True; return True;
} }
else else
@ -288,6 +288,7 @@
// returns True if user and pw match, if conf_pw is a md5 ONLY compare with md5($pw) and NOT the plaintext !!! // returns True if user and pw match, if conf_pw is a md5 ONLY compare with md5($pw) and NOT the plaintext !!!
function check_auth($user,$pw,$conf_user,$conf_pw) function check_auth($user,$pw,$conf_user,$conf_pw)
{ {
//echo "<p>setup::check_auth('$user','$pw','$conf_user','$conf_pw')</p>\n";
if ($user != $conf_user) if ($user != $conf_user)
{ {
return False; // wrong username return False; // wrong username
@ -301,6 +302,7 @@
$pw = md5($pw); $pw = md5($pw);
} }
} }
//echo "<p>setup::check_auth: ('$pw' == '$conf_pw') == ".(int)($pw == $conf_pw)."</p>\n";
return $pw == $conf_pw; return $pw == $conf_pw;
} }