diff options
author | Meik Sievertsen <acydburn@phpbb.com> | 2007-08-30 21:21:16 +0000 |
---|---|---|
committer | Meik Sievertsen <acydburn@phpbb.com> | 2007-08-30 21:21:16 +0000 |
commit | 1d004b925f9e858fcdc491da63efefb52173042c (patch) | |
tree | 77002d3de006a681097d976766116cba70cbd0fe /phpBB/includes/auth/auth_db.php | |
parent | 6f1d6e92460316e9d602fdf1b7466d4ad886564b (diff) | |
download | forums-1d004b925f9e858fcdc491da63efefb52173042c.tar forums-1d004b925f9e858fcdc491da63efefb52173042c.tar.gz forums-1d004b925f9e858fcdc491da63efefb52173042c.tar.bz2 forums-1d004b925f9e858fcdc491da63efefb52173042c.tar.xz forums-1d004b925f9e858fcdc491da63efefb52173042c.zip |
necessary changes...
git-svn-id: file:///svn/phpbb/trunk@8072 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB/includes/auth/auth_db.php')
-rw-r--r-- | phpBB/includes/auth/auth_db.php | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/phpBB/includes/auth/auth_db.php b/phpBB/includes/auth/auth_db.php index 6df378b00a..49e6b8fc5d 100644 --- a/phpBB/includes/auth/auth_db.php +++ b/phpBB/includes/auth/auth_db.php @@ -20,6 +20,15 @@ function login_db(&$username, &$password) { global $db, $config; + // do not allow empty password + if (!$password) + { + return array( + 'status' => LOGIN_BREAK, + 'error_msg' => 'NO_PASSWORD_SUPPLIED', + ); + } + $sql = 'SELECT user_id, username, user_password, user_passchg, user_pass_convert, user_email, user_type, user_login_attempts FROM ' . USERS_TABLE . " WHERE username_clean = '" . $db->sql_escape(utf8_clean_string($username)) . "'"; |