Revision 38a4efa7
Von Moritz Bunkus vor mehr als 13 Jahren hinzugefügt
| bin/mozilla/admin.pl | ||
|---|---|---|
| 73 | 73 |
$locale = $::locale; |
| 74 | 74 |
$auth = $::auth; |
| 75 | 75 |
|
| 76 |
$::auth->set_session_value('rpw', $::form->{rpw}) if $session_result == SL::Auth->SESSION_OK;
|
|
| 76 |
$::auth->store_root_credentials_in_session($form->{rpw}) if $session_result == SL::Auth->SESSION_OK;
|
|
| 77 | 77 |
|
| 78 | 78 |
$form->{stylesheet} = "lx-office-erp.css";
|
| 79 | 79 |
$form->{favicon} = "favicon.ico";
|
| ... | ... | |
| 81 | 81 |
if ($form->{action}) {
|
| 82 | 82 |
if ($auth->authenticate_root($form->{rpw}) != $auth->OK()) {
|
| 83 | 83 |
$form->{error_message} = $locale->text('Incorrect Password!');
|
| 84 |
$auth->delete_session_value('rpw');
|
|
| 84 | 85 |
adminlogin(); |
| 85 | 86 |
} else {
|
| 86 | 87 |
if ($auth->session_tables_present()) {
|
| 87 |
$::auth->set_session_value('rpw', $::form->{rpw});
|
|
| 88 |
$::auth->create_or_refresh_session();
|
|
| 88 |
$::auth->store_root_credentials_in_session($::form->{rpw});
|
|
| 89 |
delete $::form->{rpw};
|
|
| 89 | 90 |
_apply_dbupgrade_scripts(); |
| 90 | 91 |
} |
| 91 | 92 |
|
Auch abrufbar als: Unified diff
Das Admin-Passwort nicht im Klartext in Session-Tabelle ablegen