Trigger error right away if user has exceeded login attempts instead of asking for the authentication data over and over again without accepting it even if it is correct.

git-svn-id: file:///svn/phpbb/branches/phpBB-3_0_0@10432 89ea8834-ac86-4346-8a33-228a782c2dd0
author: Andreas Fischer <bantu@phpbb.com> 2010-01-20 01:05:36 +0000
committer: Andreas Fischer <bantu@phpbb.com> 2010-01-20 01:05:36 +0000
commit: 04ce664604592623f72c12edc34994cc65a4d010 (patch)
tree: 8eb7955a3931017e5991700d60d0affa90d98361
parent: f98ca7ce48f5c6fbdde428ee2d1ead7bd8d43772 (diff)
download: forums-04ce664604592623f72c12edc34994cc65a4d010.tar
forums-04ce664604592623f72c12edc34994cc65a4d010.tar.gz
forums-04ce664604592623f72c12edc34994cc65a4d010.tar.bz2
forums-04ce664604592623f72c12edc34994cc65a4d010.tar.xz
forums-04ce664604592623f72c12edc34994cc65a4d010.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/phpBB/includes/functions.php b/phpBB/includes/functions.php
index af94f3f041..823c71dbf0 100644
--- a/phpBB/includes/functions.php
+++ b/phpBB/includes/functions.php
@@ -4003,6 +4003,11 @@ function phpbb_http_login($param)
 		{
 			return;
 		}
+		else if ($auth_result['status'] == LOGIN_ERROR_ATTEMPTS)
+		{
+			header('HTTP/1.0 401 Unauthorized');
+			trigger_error('NOT_AUTHORISED');
+		}
 	}
 
 	// Prepend sitename to auth_message
author	Andreas Fischer <bantu@phpbb.com>	2010-01-20 01:05:36 +0000
committer	Andreas Fischer <bantu@phpbb.com>	2010-01-20 01:05:36 +0000
commit	04ce664604592623f72c12edc34994cc65a4d010 (patch)
tree	8eb7955a3931017e5991700d60d0affa90d98361
parent	f98ca7ce48f5c6fbdde428ee2d1ead7bd8d43772 (diff)
download	forums-04ce664604592623f72c12edc34994cc65a4d010.tar forums-04ce664604592623f72c12edc34994cc65a4d010.tar.gz forums-04ce664604592623f72c12edc34994cc65a4d010.tar.bz2 forums-04ce664604592623f72c12edc34994cc65a4d010.tar.xz forums-04ce664604592623f72c12edc34994cc65a4d010.zip