From 1f29ee2fe4477d9f01a40cc519dded5621d5d452 Mon Sep 17 00:00:00 2001 From: JuLien42 Date: Wed, 10 Aug 2016 11:20:48 +0200 Subject: [PATCH 1/1] add sha-256 password cipher support --- admin.php | 3 ++- install.php | 2 +- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/admin.php b/admin.php index 62fd5ee..bfbd123 100644 --- a/admin.php +++ b/admin.php @@ -70,7 +70,8 @@ else /* Check classic admin password authentification. */ if (isset ($_POST['admin_password']) && empty($cfg['admin_http_auth_user'])) { - if ($cfg['admin_password'] === $_POST['admin_password']) + if ($cfg['admin_password'] === $_POST['admin_password'] || + $cfg['admin_password'] === hash('sha256', $_POST['admin_password'])) $_SESSION['admin_auth'] = true; else { diff --git a/install.php b/install.php index c537bdd..958aa1e 100644 --- a/install.php +++ b/install.php @@ -166,7 +166,7 @@ if (isset ($_POST['step']) && isset ($_POST['next'])) break; case 2: - $cfg['admin_password'] = $_POST['admin_password']; + $cfg['admin_password'] = hash('sha256', $_POST['admin_password']); jirafeau_export_cfg ($cfg); break; -- 2.34.1