Bill Shupp wrote:
>
> Perhaps it's missing in the form. Can you verify that? If so, I'm
> surprised this has not been reported before.
Bill,
I've done some more checking. I've turned on the mysql query log, and
the query that is being sent when I try to login with test@test.com/test is:
Email='test@test.com' and
Password='543e1d35c7c833e578709d2baabdc79c' and
Status='active' LIMIT 1
Looking in the accounts table, this is not the md5 hash of "test":
mysql> select md5('test'), password from accounts;
+----------------------------------+----------------------------------+
| md5('test') | password |
+----------------------------------+----------------------------------+
| 098f6bcd4621d373cade4e832627b4f6 | 098f6bcd4621d373cade4e832627b4f6 |
+----------------------------------+----------------------------------+
1 row in set (0.00 sec)
Also, looking in index.php, I see this block of code:
} else if($_REQUEST['state'] == "login_screen") {
// LOGIN SCREEN
$smarty->display('header.tpl');
require('src/login_screen.php');
$smarty->display('footer.tpl');
exit;
The file 'login_screen.php' does not exist:
[EMAIL PROTECTED] vegadns-0.9.9.1]# pwd
/var/www/vegadns/vegadns-0.9.9.1
[EMAIL PROTECTED] vegadns-0.9.9.1]# find . -name login_screen.php
Does that shed any light on the issue?
R.
