/SL/Auth/DB.pm - Diff - projekt kivitendo - wissen

« Zurück | Weiter »

Revision d0c2cfbe

Das Benutzer-Passwort nicht im Klartext in Session-Tabelle ablegen

       # passwords. Hash it for easier comparison.
       $stored_password               = SL::Auth::Password->hash(password => $stored_password) unless $stored_password;
       ($algorithm, $stored_password) = SL::Auth::Password->parse($stored_password);
       ($algorithm2, $password)       = SL::Auth::Password->parse(SL::Auth::Password->hash(password => $password, algorithm => $algorithm, login => $login));
       ($algorithm2, $password)       = SL::Auth::Password->parse(SL::Auth::Password->hash_if_unhashed(password => $password, algorithm => $algorithm, login => $login));
       $main::lxdebug->leave_sub();
-...
       return 1;
+    }
     sub requires_cleartext_password {
       return 0;
+    }
     sub change_password {
       $main::lxdebug->enter_sub();

Auch abrufbar als: Unified diff