commit: a7066d7bd83e18729d0b0a9efc3449decfa27a69
Author: Brian Evans <grknight <AT> gentoo <DOT> org>
AuthorDate: Mon Aug 19 14:02:09 2019 +0000
Commit: Brian Evans <grknight <AT> gentoo <DOT> org>
CommitDate: Mon Aug 19 14:02:09 2019 +0000
URL: https://gitweb.gentoo.org/proj/bouncer.git/commit/?id=a7066d7b
php/lib/auth.php: Drop md5 upgrade check
Signed-off-by: Brian Evans <grknight <AT> gentoo.org>
php/lib/auth.php | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/php/lib/auth.php b/php/lib/auth.php
index 610b3c2..7101886 100644
--- a/php/lib/auth.php
+++ b/php/lib/auth.php
@@ -48,9 +48,7 @@ public static function query($username,$password)
if ($res && DB::numrows($res)>0) {
$userrow = DB::fetch($res,PDO::FETCH_ASSOC);
if (!password_verify($password, $userrow['password'])) {
- if ($userrow['password'] !== md5($password))
- return false;
- static::password_upgrade($userrow, $username, $password);
+ return false;
}
if (password_needs_rehash($userrow['password'], PASSWORD_DEFAULT))
static::password_upgrade($userrow, $username, $password);
