diff options
| author | Nathaniel Guse <nathaniel.guse@gmail.com> | 2012-09-03 13:32:33 -0500 |
|---|---|---|
| committer | Nathaniel Guse <nathaniel.guse@gmail.com> | 2012-09-03 13:32:33 -0500 |
| commit | b3cd5a649be62f175de651a16ae02c5f709ca2f4 (patch) | |
| tree | 223329608a30291484735b729d4432c61b0362aa /phpBB/includes/acp/acp_users.php | |
| parent | 7bf598954c452448c2807428f6517cd75d910f92 (diff) | |
| download | forums-b3cd5a649be62f175de651a16ae02c5f709ca2f4.tar forums-b3cd5a649be62f175de651a16ae02c5f709ca2f4.tar.gz forums-b3cd5a649be62f175de651a16ae02c5f709ca2f4.tar.bz2 forums-b3cd5a649be62f175de651a16ae02c5f709ca2f4.tar.xz forums-b3cd5a649be62f175de651a16ae02c5f709ca2f4.zip | |
[ticket/8713] Do not trim login inputs
Create a function to request variables which are not trimmed.
All requests for passwords (except forum passwords) now use the
untrimmed request function.
PHPBB3-8713
Diffstat (limited to 'phpBB/includes/acp/acp_users.php')
| -rw-r--r-- | phpBB/includes/acp/acp_users.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/phpBB/includes/acp/acp_users.php b/phpBB/includes/acp/acp_users.php index b54257b04a..b9958ed0f1 100644 --- a/phpBB/includes/acp/acp_users.php +++ b/phpBB/includes/acp/acp_users.php @@ -32,7 +32,7 @@ class acp_users { global $config, $db, $user, $auth, $template, $cache; global $phpbb_root_path, $phpbb_admin_path, $phpEx, $table_prefix, $file_uploads; - global $phpbb_dispatcher; + global $phpbb_dispatcher, $request; $user->add_lang(array('posting', 'ucp', 'acp/users')); $this->tpl_name = 'acp_users'; @@ -770,8 +770,8 @@ class acp_users 'username' => utf8_normalize_nfc(request_var('user', $user_row['username'], true)), 'user_founder' => request_var('user_founder', ($user_row['user_type'] == USER_FOUNDER) ? 1 : 0), 'email' => strtolower(request_var('user_email', $user_row['user_email'])), - 'new_password' => request_var('new_password', '', true), - 'password_confirm' => request_var('password_confirm', '', true), + 'new_password' => $request->untrimed_variable('new_password', '', true), + 'password_confirm' => $request->untrimed_variable('password_confirm', '', true), ); // Validation data - we do not check the password complexity setting here |