m17hr1l/nibiru-framework.com
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Version 0.9.5 beta - added account activation on the auth extension in the core, now users can be enabled and disabled by standard.

Browse Source
This commit is contained in:
Stephan Kasdorf
2020-09-07 21:26:20 +02:00
parent ff466d1c98
commit 016811c414
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
core/c/auth.php
View File

@@ -52,8 +52,8 @@ class Auth extends Controller implements IAuth
if(!array_key_exists('auth', $_SESSION)) if(!array_key_exists('auth', $_SESSION))
{ {
$user_password = Pdo::query("SELECT DES_DECRYPT(user_pass, '".Config::getInstance()->getConfig()[IView::NIBIRU_SECURITY]["password_hash"]."') AS pass FROM user WHERE user_login = '".$login."';"); $user_password = Pdo::query("SELECT user_account_active, DES_DECRYPT(user_pass, '".Config::getInstance()->getConfig()[IView::NIBIRU_SECURITY]["password_hash"]."') AS pass FROM user WHERE user_login = '".$login."';");
if( $user_password["pass"] == $password ) if( $user_password["pass"] == $password && $user_password['user_account_active'] )
{ {
$session_id = session_id(); $session_id = session_id();
$_SESSION['auth']['id'] = $session_id; $_SESSION['auth']['id'] = $session_id;