[Phpgroupware-cvs] [19073] allow passwords with quotes

phpgroupware-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Phpgroupware-cvs] [19073] allow passwords with quotes - fixes #23949

From:	Dave Hall
Subject:	[Phpgroupware-cvs] [19073] allow passwords with quotes - fixes #23949
Date:	Mon, 16 Feb 2009 10:30:43 +0000

Revision: 19073
          
http://svn.sv.gnu.org/viewvc/?view=rev&root=phpgroupware&revision=19073
Author:   skwashd
Date:     2009-02-16 10:30:43 +0000 (Mon, 16 Feb 2009)

Log Message:
-----------
allow passwords with quotes - fixes #23949

Modified Paths:
--------------
    core/trunk/phpgwapi/inc/class.setup.inc.php

Modified: core/trunk/phpgwapi/inc/class.setup.inc.php
===================================================================
--- core/trunk/phpgwapi/inc/class.setup.inc.php 2009-02-11 21:26:56 UTC (rev 
19072)
+++ core/trunk/phpgwapi/inc/class.setup.inc.php 2009-02-16 10:30:43 UTC (rev 
19073)
@@ -29,7 +29,7 @@
 
        /**
        * Setup
-       * 
+       *
        * @package phpgwapi
        * @subpackage application
        */
@@ -44,7 +44,7 @@
                var $lang = '';
                var $html = '';
                var $appreg = '';
-               
+
                /* table name vars */
                var $tbl_apps;
                var $tbl_config;
@@ -58,7 +58,7 @@
                        /* The setup application needs these */
                        $this->html     = $html ? 
CreateObject('phpgwapi.setup_html') : null;
                        $this->translation = $translation ? 
CreateObject('phpgwapi.setup_translation') : null;
-                       
+
                        //$this->tbl_apps    = $this->get_apps_table_name();
                        //$this->tbl_config  = $this->get_config_table_name();
                        $this->tbl_hooks   = $this->get_hooks_table_name();
@@ -97,7 +97,7 @@
                        $ConfigLogin  = phpgw::get_var('ConfigLogin',   
'string', 'POST');
                        $HeaderLogin  = phpgw::get_var('HeaderLogin',   
'string', 'POST');
                        $FormDomain   = phpgw::get_var('FormDomain',    
'string', 'POST');
-                       $FormPW       = phpgw::get_var('FormPW',                
'string', 'POST');
+                       $FormPW       = stripslashes(phpgw::get_var('FormPW',   
        'string', 'POST'));
 
                        $ConfigDomain = phpgw::get_var('ConfigDomain');
                        $ConfigPW     = phpgw::get_var('ConfigPW');
@@ -218,7 +218,7 @@
                                
$GLOBALS['phpgw_info']['setup']['ConfigLoginMSG'] = '';
                                return False;
                        }
-                       
+
                        return false;
                }
 
@@ -228,7 +228,7 @@
                        {
                                return true;
                        }
-                       
+
                        $allowed_ips = split(',', 
$GLOBALS['phpgw_info']['server']['setup_acl']);
                        if(!is_array($allowed_ips))
                        {
@@ -290,7 +290,7 @@
                        {
                                return False;
                        }
-                       
+
                        $version = str_replace('pre','.',$versionstring);
                        $varray  = explode('.',$version);
                        $major   = 
implode('.',array($varray[0],$varray[1],$varray[2]));
@@ -360,10 +360,10 @@
                                if ( 
isset($setup_info[$appname]['tables_use_prefix'])
                                        && 
$setup_info[$appname]['tables_use_prefix'] )
                                {
-                                       echo $setup_info[$appname]['name'] . ' 
uses tables_use_prefix, storing ' 
+                                       echo $setup_info[$appname]['name'] . ' 
uses tables_use_prefix, storing '
                                        . $setup_info[$appname]['tables_prefix']
                                                . ' as prefix for ' . 
$setup_info[$appname]['name'] . " tables\n";
-                                                                               
                                                                        
+
                                        $sql = "INSERT INTO phpgw_config 
(config_app,config_name,config_value) "
                                                ."VALUES 
('".$setup_info[$appname]['name']."','"
                                                
.$appname."_tables_prefix','".$setup_info[$appname]['tables_prefix']."')";
@@ -403,7 +403,7 @@
                        {
                                return False;
                        }
-                       
+
                        $debug = isset($GLOBALS['DEBUG']) && $GLOBALS['DEBUG'];
 
                        if ( $debug )
@@ -416,13 +416,13 @@
                        $this->db->next_record();
                        if($this->db->f(0))
                        {
-                               if( $debug ) 
+                               if( $debug )
                                {
                                        echo '... app previously registered.';
                                }
                                return True;
                        }
-                       
+
                        if( $debug )
                        {
                                echo '... app not registered';
@@ -541,7 +541,7 @@
                        //echo 'DELETING application: ' . $appname;
                        $this->db->query("DELETE FROM phpgw_applications WHERE 
app_name='{$appname}'",__LINE__,__FILE__);
                        $this->clear_session_cache();
-                       
+
                        return true;
                }
 
@@ -589,14 +589,14 @@
                        {
                                return false;
                        }
-                       
+
                        //echo "DELETING hooks for: " . 
$setup_info[$appname]['name'];
                        if (!is_object($this->hooks))
                        {
                                $this->hooks = createObject('phpgwapi.hooks', 
$this->db);
                        }
                        $this->hooks->register_hooks($appname);
-                       
+
                        return true;
                }
 
@@ -737,7 +737,7 @@
                        {
                                if($DEBUG)
                                {
-                                       echo'<br>Checking if '. 
intval($testa[$i]) . ' is more than ' . intval($testb[$i]) . ' ...'; 
+                                       echo'<br>Checking if '. 
intval($testa[$i]) . ' is more than ' . intval($testb[$i]) . ' ...';
                                }
 
                                if ( isset($testa[$i]) &&  isset($testb[$i])

[Prev in Thread]

Current Thread

[Next in Thread]

[Phpgroupware-cvs] [19073] allow passwords with quotes - fixes #23949, Dave Hall <=

Prev by Date: [Phpgroupware-cvs] [19072] bump version for all users - stop new and existing 16 installs from breaking
Next by Date: [Phpgroupware-cvs] [19074] allow passwords with quotes - fixes #23949
Previous by thread: [Phpgroupware-cvs] [19072] bump version for all users - stop new and existing 16 installs from breaking
Next by thread: [Phpgroupware-cvs] [19074] allow passwords with quotes - fixes #23949
Index(es):
- Date
- Thread