Be slightly stronger in checkPassword - it has to return exactly true

for authentication to pass. git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@4317 c91229c3-7414-0410-bfa2-8a42b809f60b

Be slightly stronger in checkPassword - it has to return exactly true
for authentication to pass. git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@4317 c91229c3-7414-0410-bfa2-8a42b809f60b
nbm
1 parent 2c36e776
Showing 1 changed file with 4 additions and 4 deletions
presentation/login.php
@@ -114,13 +114,13 @@ class LoginPageDispatcher extends KTDispatcher {
         }
         $authenticated = KTAuthenticationUtil::checkPassword($oUser, $password);
  
-        if ($authenticated === false) {
-            $this->simpleRedirectToMain('Login failed.  Please check your username and password, and try again.', $url, $params);
+        if (PEAR::isError($authenticated)) {
+            $this->simpleRedirectToMain('Authentication failure.  Please try again.', $url, $params);
             exit(0);
         }
  
-        if (PEAR::isError($authenticated)) {
-            $this->simpleRedirectToMain('Authentication failure.  Please try again.', $url, $params);
+        if ($authenticated !== true) {
+            $this->simpleRedirectToMain('Login failed.  Please check your username and password, and try again.', $url, $params);
             exit(0);
         }