[dev] Re: [cvs] commit: horde/docs CHANGES horde/lib/Auth sql.php
Marko Djukic
marko at oblo.com
Thu Jul 24 03:25:18 PDT 2003
Quoting Max Kalika <max at horde.org>:
> - change query to _authenticate() query to retreive the password
> and pass it to new _comparePassword() function that correctly
> crypts the passed in plaintext password.
hi max,
not sure if this is a documentation/comments issue or code logic:
- line 17 talks about 'encryption' being an optional param and defaults to
'md5-hex'
- but in _comparePasswords(), the 'encryption' param is checked if it is set, if
not it actually defaults to plaintext in line 396, hence the default sql auth
setup doesn't authenticate.
marko
More information about the dev
mailing list