~ubuntu-branches/debian/stretch/phpldapadmin/stretch

« back to all changes in this revision

Viewing changes to htdocs/password_checker.php

  • Committer: Package Import Robot
  • Author(s): Fabio Tranchitella, Marcus Osdoba, Fabio Tranchitella
  • Date: 2012-02-08 08:52:18 UTC
  • mfrom: (1.2.5)
  • Revision ID: package-import@ubuntu.com-20120208085218-9vopuqvdwo6ks4xs
Tags: 1.2.2-1
[ Marcus Osdoba ]
* Non-maintainer upload.
* New upstream release (Closes: #605061,#499862,#505578,#517802,#642445)
* Not reproducible in this version (Closes: #502412,#505575,#521033,#527070)
* SF Bug #3477910 - XSS vulnerability in query
* Remove dependency to unknown package libapache-mod-php5
* Fix lintian warnings in templates.
* Remove apt-dependancy to apache2 (Closes: #622657)
* Use | instead of # for sed used in config/postinst (Closes: #616305)
* Add browser hint in package description (Closes: #527070)
* Fix pending l10n issues. Debconf translations:
  - Danish (Joe Hansen).  Closes: #638680
  - Polish (Michał Kułach).  Closes: #657458
* Bump standards to 3.9.2
* Use quilt as source format

[ Fabio Tranchitella ]
* Uploaded work by Marcus Osdoba.

Show diffs side-by-side

added added

removed removed

Lines of Context:
18
18
$request['hash'] = get_request('hash','REQUEST');
19
19
$request['password'] = get_request('check_password','REQUEST');
20
20
$request['action'] = get_request('action','REQUEST');
 
21
$request['attribute'] = get_request('attr','REQUEST');
21
22
 
22
23
if (get_request('base64','REQUEST')) {
23
24
        $request['hash'] = base64_decode($request['hash']);
30
31
 
31
32
echo '<form action="password_checker.php" method="post">';
32
33
echo '<input type="hidden" name="action" value="compare" />';
 
34
printf('<input type="hidden" name="attr" value="%s" />',$request['attribute']);
33
35
 
34
 
echo '<table class="forminput" width=100% border=0>';
 
36
echo '<table class="forminput" width="100%" border="0">';
35
37
 
36
38
echo '<tr>';
37
39
printf('<td class="heading">%s</td>',_('Compare'));
53
55
if ($request['action'] == 'compare') {
54
56
        echo '&nbsp;&nbsp;&nbsp;&nbsp;<b>';
55
57
 
56
 
        if (password_check($request['hash'],$request['password']))
 
58
        if (password_check($request['hash'],$request['password'],$request['attribute']))
57
59
                printf('<span class="good">%s</span>',_('Passwords match!'));
58
60
        else
59
61
                printf('<span class="bad">%s</span>',_('Passwords do not match!'));