| 168 |
} |
} |
| 169 |
|
|
| 170 |
$sql = "SELECT UID, username, p_login, verified, temp_password, |
$sql = "SELECT UID, username, p_login, verified, temp_password, |
| 171 |
password = MD5('$password') AS old_pass |
password = MD5('$password') AS old_pass, |
| 172 |
|
(temp_password = SHA2('$password', 256) OR temp_password = '$password') AS temp_pass |
| 173 |
FROM user_list WHERE username = '$username' AND |
FROM user_list WHERE username = '$username' AND |
| 174 |
(password = MD5('$password') OR password = SHA2('$password', 256) OR |
(password = MD5('$password') OR password = SHA2('$password', 256) OR |
| 175 |
temp_password = '$password') |
temp_password = SHA2('$password', 256) OR temp_password = '$password') |
| 176 |
AND enable FOR UPDATE"; |
AND enable FOR UPDATE"; |
| 177 |
|
|
| 178 |
$rs = mysqli_query($db_conn, $sql); |
$rs = mysqli_query($db_conn, $sql); |
| 192 |
$uid = intval($row["UID"]); |
$uid = intval($row["UID"]); |
| 193 |
$username = $row["username"]; |
$username = $row["username"]; |
| 194 |
|
|
| 195 |
if ($password == $row["temp_password"] && !$ch_passwd) |
if ($row["temp_pass"] && !$ch_passwd) |
| 196 |
{ |
{ |
| 197 |
$result_set["return"]["code"] = 2; |
$result_set["return"]["code"] = 2; |
| 198 |
$result_set["return"]["message"] = "使用临时密码登录需设置新密码"; |
$result_set["return"]["message"] = "使用临时密码登录需设置新密码"; |
| 203 |
|
|
| 204 |
if ($ch_passwd) |
if ($ch_passwd) |
| 205 |
{ |
{ |
| 206 |
if ($password == $row["temp_password"]) // New user first time login with temp password |
if ($row["temp_pass"]) // Login with temp password |
| 207 |
{ |
{ |
| 208 |
$verified = 1; |
$verified = 1; |
| 209 |
|
|
Parent Directory
| 
Revision Log
| 
Patch