phpdevshell team mailing list archive

Thread
Date

[Bug 1020928] Re: PluggableAuth crashes if the entered password was wrong

To: phpdevshell@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1020928@xxxxxxxxxxxxxxxxxx>
Date: Wed, 04 Jul 2012 12:06:12 -0000
Reply-to: Bug 1020928 <1020928@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Branch linked: lp:~phpdevshell/phpdevshell/3.2.1

-- 
You received this bug notification because you are a member of
PHPDevShell, which is subscribed to PHPDevShell.
https://bugs.launchpad.net/bugs/1020928

Title:
  PluggableAuth crashes if the entered password was wrong

Status in Open Source PHP RAD Framework with UI.:
  Fix Committed

Bug description:
  Fix ("/PluggableAuth/includes/AUTH_login.class.php", line 83):

  /**
   * @author Adrian Liechti
   * If the Passwort does not have a length of 32 chars, it must be a Source.
   * 
   * If the Password does have a length of 32 chars, the login has failed
   * because it was checked before, it has to be a wrong Password.
   * 
   * @important This means that a Source must not have a name with a lengt of 32 chars.
   */
  if (strlen($source) !== 32) {
  	$plugin = $this->getAuthPlugin($source);
  	if ($plugin->lookupUser(array('username' => $username, 'password' => $password))) {
  		return $user;
  	}
  }

To manage notifications about this bug go to:
https://bugs.launchpad.net/phpdevshell/+bug/1020928/+subscriptions

References

[Bug 1020928] [NEW] PluggableAuth crashes if the entered password was wrong
From: Adrian Liechti, 2012-07-04