Commit 56a3b2c3 authored by tbrehm's avatar tbrehm

Fixed: FS#1570 - Password broken when client is updated with the remote api.

parent 5c960fb4
...@@ -701,7 +701,7 @@ class remoting_lib { ...@@ -701,7 +701,7 @@ class remoting_lib {
function ispconfig_sysuser_update($params,$client_id){ function ispconfig_sysuser_update($params,$client_id){
global $app; global $app;
$username = $app->db->quote($params["username"]); $username = $app->db->quote($params["username"]);
$password = $app->db->quote($params["password"]); $clear_password = $app->db->quote($params["password"]);
$client_id = intval($client_id); $client_id = intval($client_id);
$salt="$1$"; $salt="$1$";
$base64_alphabet='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'; $base64_alphabet='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
...@@ -709,8 +709,9 @@ class remoting_lib { ...@@ -709,8 +709,9 @@ class remoting_lib {
$salt.=$base64_alphabet[mt_rand(0,63)]; $salt.=$base64_alphabet[mt_rand(0,63)];
} }
$salt.="$"; $salt.="$";
$password = crypt(stripslashes($password),$salt); $password = crypt(stripslashes($clear_password),$salt);
$sql = "UPDATE sys_user set username = '$username', passwort = '$password' WHERE client_id = $client_id"; if ($clear_password) $pwstring = ", passwort = '$password'"; else $pwstring ="" ;
$sql = "UPDATE sys_user set username = '$username' $pwstring WHERE client_id = $client_id";
$app->db->query($sql); $app->db->query($sql);
} }
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment