gunnar: server/kolab-webadmin/kolab-webadmin/php/admin/include auth.class.php.in, 1.4, 1.4.2.1
cvs at kolab.org
cvs at kolab.org
Tue Nov 17 18:12:37 CET 2009
Author: gunnar
Update of /kolabrepository/server/kolab-webadmin/kolab-webadmin/php/admin/include
In directory doto:/tmp/cvs-serv19710/kolab-webadmin/kolab-webadmin/php/admin/include
Modified Files:
Tag: kolab_2_2_branch
auth.class.php.in
Log Message:
kolab/issue919 (kolab server has problems with some characters in passwords)
Index: auth.class.php.in
===================================================================
RCS file: /kolabrepository/server/kolab-webadmin/kolab-webadmin/php/admin/include/auth.class.php.in,v
retrieving revision 1.4
retrieving revision 1.4.2.1
diff -u -d -r1.4 -r1.4.2.1
--- auth.class.php.in 8 Sep 2008 17:52:30 -0000 1.4
+++ auth.class.php.in 17 Nov 2009 17:12:35 -0000 1.4.2.1
@@ -70,12 +70,12 @@
$this->error_string = _("User class '$tmp_group' is denied access");
$this->gotoLoginPage();
}
- $bind_result = $ldap->bind( $dn, $_POST['password'] );
+ $bind_result = $ldap->bind( $dn, stripslashes($_POST['password']));
if( $bind_result ) {
// All OK!
$_SESSION['auth_dn'] = $dn;
$_SESSION['auth_user'] = $auth_user;
- $_SESSION['auth_pw'] = $_POST['password'];
+ $_SESSION['auth_pw'] = stripslashes($_POST['password']);
$_SESSION['auth_group'] = $auth_group;
$_SESSION['remote_ip'] = $_SERVER['REMOTE_ADDR'];
return true;
More information about the commits
mailing list