diff options
| author | christopherm <christopherm@4979c152-3d1c-0410-bac9-87ea11338e46> | 2006-11-12 05:34:09 +0000 |
|---|---|---|
| committer | christopherm <christopherm@4979c152-3d1c-0410-bac9-87ea11338e46> | 2006-11-12 05:34:09 +0000 |
| commit | 16b10f9cddca05aa2c3f63a15238c983b873bf23 (patch) | |
| tree | 5b4127f4b8e267f42214a05e7cd231a2f5d46ab8 /menu.pl | |
| parent | 402191681370f0059a0d58d95e799d2d53666fce (diff) | |
creating a central Session::password_check which will allow for an upgrade from crypted passwords to md5. Fixing session timeout problem for first login. Removing some old cruft (set_cookie and more). Changing central db users_conf to remove dbconnect (which will now be generated) and to add crypted_password (which will eventually be removed).
git-svn-id: https://ledger-smb.svn.sourceforge.net/svnroot/ledger-smb/trunk@520 4979c152-3d1c-0410-bac9-87ea11338e46
Diffstat (limited to 'menu.pl')
| -rwxr-xr-x | menu.pl | 9 |
1 files changed, 1 insertions, 8 deletions
@@ -150,7 +150,6 @@ if ($form->{action}) { 1; # end - sub check_password { if ($myconfig{password}) { @@ -158,7 +157,7 @@ sub check_password { require "bin/pw.pl"; if ($form->{password}) { - if ($myconfig{password} ne (Digest::MD5::md5_hex $form->{password})) { + if (! Session::password_check($form, $form->{login}, $form->{password})) { if ($ENV{HTTP_USER_AGENT}) { &getpassword; } else { @@ -178,12 +177,6 @@ sub check_password { $cookie{$name} = $value; } - if ($form->{action} ne 'display') { - if ((! $cookie{"LedgerSMB-$form->{login}"}) || $cookie{"LedgerSMB-$form->{login}"} ne $form->{sessionid}) { - &getpassword(1); - exit; - } - } #check for valid session if(!Session::session_check($cookie{"LedgerSMB"}, $form)){ &getpassword(1); |