Digitalstack/myaac
2
0
Fork 0
mirror of https://github.com/slawkens/myaac.git synced 2025-10-14 01:34:55 +02:00
Code Issues Packages Projects Releases Wiki Activity

* fixed recovering account and changing password when salt is enabled

Browse Source 
* added 'enabled' field in myaac_hooks table, which can enable or
disable specified hook
* password change minimal/maximal length is now more precise
This commit is contained in:
slawkens1
2017-08-25 00:10:53 +02:00
parent 603c2175e3
commit c8c1ba5682
8 changed files with 17 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
system/pages/accountmanagement.php
View File

@@ -333,9 +333,17 @@ Please enter your account name and your password.<br/><a href="?subtopic=createa
if(empty($new_password) || empty($new_password2) || empty($old_password)){
$show_msgs[] = "Please fill in form.";
}
$password_strlen = strlen($new_password);
if($new_password != $new_password2) {
$show_msgs[] = "The new passwords do not match!";
}
else if($password_strlen < 8) {
$show_msgs[] = "New password minimal length is 8 characters.";
}
else if($password_strlen > 32) {
$show_msgs[] = "New password maximal length is 32 characters.";
}
if(empty($show_msgs)) {
if(!check_password($new_password)) {
$show_msgs[] = "New password contains illegal chars (a-z, A-Z and 0-9 only!). Minimum password length is 7 characters and maximum 32.";
@@ -363,7 +371,7 @@ Please enter your account name and your password.<br/><a href="?subtopic=createa
{
$salt = generateRandomString(10, false, true, true);
$new_password = $salt . $new_password;
$account_logged->setSalt($salt);
$account_logged->setCustomField('salt', $salt);
}
$new_password = encrypt($new_password);