extern/egroupware
1
0
Fork 1
mirror of https://github.com/EGroupware/egroupware.git synced 2024-11-08 00:54:50 +01:00
Code Issues Packages Projects Releases Wiki Activity

added password validation routines, as well as general improvements on sanitize function

Browse Source
This commit is contained in:
seek3r 2002-05-26 08:50:40 +00:00
parent 2d37f41455
commit d2f00f43ce
2 changed files with 38 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
admin/inc/class.boaccounts.inc.php
View File

@ -677,6 +677,20 @@
$error[$totalerrors] = lang('The two passwords are not the same');
$totalerrors++;
}
$temp_msgbox_data = $GLOBALS['phpgw_info']['flags']['msgbox_data'];
unset($GLOBALS['phpgw_info']['flags']['msgbox_data']);
if(!sanitize($_userData['account_passwd'],'password'))
{
reset($GLOBALS['phpgw_info']['flags']['msgbox_data']);
while(list($key) = each($GLOBALS['phpgw_info']['flags']['msgbox_data']))
{
$error[$totalerrors] = lang($key);
$totalerrors++;
}
}
$GLOBALS['phpgw_info']['flags']['msgbox_data'] = $temp_msgbox_data;
unset($temp_msgbox_data);
}
if (!count($_userData['account_permissions']) && !count($_userData['account_groups']))

30
phpgwapi/inc/common_functions.inc.php
View File

@ -255,6 +255,15 @@
$min_length = 1;
}
if(@isset($GLOBALS['phpgw_info']['server']['passwd_rules']['require_non_alpha']) && $GLOBALS['phpgw_info']['server']['passwd_rules']['require_non_alpha'] == True)
{
$pass_verify_non_alpha = False;
}
else
{
$pass_verify_non_alpha = True;
}
if(@isset($GLOBALS['phpgw_info']['server']['passwd_rules']['require_numbers']) && $GLOBALS['phpgw_info']['server']['passwd_rules']['require_numbers'] == True)
{
$pass_verify_num = False;
@ -278,16 +287,25 @@
for ($i=0; $i != $password_length; $i++)
{
$cur_test_string = substr($string, $i, 1);
if (in_array($cur_test_string, $password_numbers))
if (in_array($cur_test_string, $password_numbers) || in_array($cur_test_string, $password_special_chars))
{
$pass_verify_num = True;
}
elseif (in_array($cur_test_string, $password_special_chars))
{
$pass_verify_special_char = True;
$pass_verify_non_alpha = True;
if (in_array($cur_test_string, $password_numbers))
{
$pass_verify_num = True;
}
elseif (in_array($cur_test_string, $password_special_chars))
{
$pass_verify_special_char = True;
}
}
}
if ($pass_verify_num == False)
{
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Password requires at least one non-alpha character']=False;
}
if ($pass_verify_num == False)
{
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Password requires at least one numeric character']=False;