Browse code

stripslashes und erlaube Anführungszeichen im Passwort

git-svn-id: https://svn.schokokeks.org/repos/tools/webinterface/trunk@788 87cf0b9e-d624-0410-a070-f6ee81989793

bernd authored on16/11/2007 16:36:04
Showing2 changed files
... ...
@@ -44,9 +44,11 @@ function get_jabberaccount_details($id)
44 44
 function valid_jabber_password($pass)
45 45
 {
46 46
   // Hier könnten erweiterte Checks stehen wenn nötig.
47
-  $foo = ereg_replace('["\']', '', $pass);
47
+  /*$foo = ereg_replace('["\']', '', $pass);
48 48
   DEBUG("\$foo = {$foo} / \$pass = {$pass}");
49 49
   return ($foo == $pass);
50
+  */
51
+  return true;
50 52
 }
51 53
 
52 54
 
... ...
@@ -23,7 +23,7 @@ if ($_GET['action'] == 'new')
23 23
   }
24 24
   else
25 25
   {
26
-    create_jabber_account($_POST['local'], $_POST['domain'], $_POST['password']);
26
+    create_jabber_account($_POST['local'], $_POST['domain'], stripslashes($_POST['password']));
27 27
     if (! $debugmode)
28 28
       header('Location: accounts.php');
29 29
   }
... ...
@@ -41,7 +41,7 @@ elseif ($_GET['action'] == 'chpass')
41 41
   }
42 42
   else
43 43
   {
44
-    change_jabber_password($_POST['accountid'], $_POST['newpass']);
44
+    change_jabber_password($_POST['accountid'], stripslashes($_POST['newpass']));
45 45
     if (! $debugmode)
46 46
       header('Location: accounts.php');
47 47
   }