aboutsummaryrefslogtreecommitdiffstatshomepage
path: root/src
diff options
context:
space:
mode:
authoronefang2020-04-21 05:58:46 +1000
committeronefang2020-04-21 05:58:46 +1000
commitda3d9184b2e820991627a16ba90d3ad9d4a54a7b (patch)
tree7f7da184145b441b8c681f7ebf23bd92fcef987d /src
parentFix up backing out of the list of users. (diff)
downloadopensim-SC_OLD-da3d9184b2e820991627a16ba90d3ad9d4a54a7b.zip
opensim-SC_OLD-da3d9184b2e820991627a16ba90d3ad9d4a54a7b.tar.gz
opensim-SC_OLD-da3d9184b2e820991627a16ba90d3ad9d4a54a7b.tar.bz2
opensim-SC_OLD-da3d9184b2e820991627a16ba90d3ad9d4a54a7b.tar.xz
Only check password on login.
Diffstat (limited to '')
-rw-r--r--src/sledjchisl/sledjchisl.c4
1 files changed, 3 insertions, 1 deletions
diff --git a/src/sledjchisl/sledjchisl.c b/src/sledjchisl/sledjchisl.c
index 9f8ea6f..d150a2f 100644
--- a/src/sledjchisl/sledjchisl.c
+++ b/src/sledjchisl/sledjchisl.c
@@ -4693,7 +4693,9 @@ d("Sub accountView %s %s %s", getStrH(Rd->database, "UserAccounts.PrincipalID")
4693 else 4693 else
4694 { 4694 {
4695 // Check password on POST if the session user is the same as the shown user, coz this is the page shown on login. 4695 // Check password on POST if the session user is the same as the shown user, coz this is the page shown on login.
4696 if ((strcmp("POST", Rd->Method) == 0) && (strcmp(Rd->shs.UUID, getStrH(Rd->database, "UserAccounts.PrincipalID")) == 0)) 4696 // Also only check on login.
4697 if ((strcmp("POST", Rd->Method) == 0) && (strcmp(Rd->shs.UUID, getStrH(Rd->database, "UserAccounts.PrincipalID")) == 0)
4698 && (strcmp("login", Rd->doit) == 0) && (strcmp("accountLogin", Rd->form) == 0))
4697 { 4699 {
4698 char *h = checkSLOSpassword(Rd, getStrH(Rd->database, "auth.passwordSalt"), getStrH(Rd->body, "password"), getStrH(Rd->database, "auth.passwordHash"), "Login failed."); 4700 char *h = checkSLOSpassword(Rd, getStrH(Rd->database, "auth.passwordSalt"), getStrH(Rd->body, "password"), getStrH(Rd->database, "auth.passwordHash"), "Login failed.");
4699 if (NULL == h) 4701 if (NULL == h)