Changeset 7726
- Timestamp:
- 05/14/09 20:43:18 (3 years ago)
- Files:
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
freepbx/trunk/amp_conf/htdocs/admin/functions.inc.php
r7598 r7726 411 411 $this->username = $username; 412 412 if ($user = getAmpUser($username)) { 413 $this->_password = $user["password "];413 $this->_password = $user["password_sha256"]; 414 414 $this->_extension_high = $user["extension_high"]; 415 415 $this->_extension_low = $user["extension_low"]; … … 1294 1294 global $db; 1295 1295 1296 $sql = "SELECT username, password , extension_low, extension_high, deptname, sections FROM ampusers WHERE username = '".$db->escapeSimple($username)."'";1296 $sql = "SELECT username, password_sha256, extension_low, extension_high, deptname, sections FROM ampusers WHERE username = '".$db->escapeSimple($username)."'"; 1297 1297 $results = $db->getAll($sql); 1298 1298 if(DB::IsError($results)) { … … 1303 1303 $user = array(); 1304 1304 $user["username"] = $results[0][0]; 1305 $user["password "] = $results[0][1];1305 $user["password_sha256"] = $results[0][1]; 1306 1306 $user["extension_low"] = $results[0][2]; 1307 1307 $user["extension_high"] = $results[0][3]; freepbx/trunk/amp_conf/htdocs/admin/header_auth.php
r5351 r7726 23 23 $_SESSION['AMP_user'] = new ampuser($_SERVER['PHP_AUTH_USER']); 24 24 25 if (!$_SESSION['AMP_user']->checkPassword( $_SERVER['PHP_AUTH_PW'])) {25 if (!$_SESSION['AMP_user']->checkPassword(hash("sha256", $_SERVER['PHP_AUTH_PW']))) { 26 26 // failed, one last chance -- fallback to amportal.conf db admin user 27 27 if (($_SERVER['PHP_AUTH_USER'] == $amp_conf['AMPDBUSER']) && ($_SERVER['PHP_AUTH_PW'] == $amp_conf['AMPDBPASS'])) {
