clones/friendica
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Centralize password hashing in Model\User

Browse Source
This commit is contained in:
Hypolite Petovan
2018-01-19 22:49:06 -05:00
parent b1e3d09533
commit 209c43ebbc
3 changed files with 57 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
mod/lostpass.php
View File

@@ -7,6 +7,7 @@
use Friendica\App;
use Friendica\Core\System;
use Friendica\Database\DBM;
use Friendica\Model\User;
require_once 'include/boot.php';
require_once 'include/enotify.php';
@@ -84,10 +85,8 @@ function lostpass_content(App $a)
return $o;
}
$new_password = autoname(6) . mt_rand(100, 9999);
$new_password_encoded = hash('whirlpool', $new_password);
$result = dba::update('user', ['password' => $new_password_encoded, 'pwdreset' => ''], ['uid' => $user['uid']]);
$new_password = User::generateNewPassword();
$result = User::updatePassword($user['uid'], $new_password);
if (DBM::is_result($result)) {
$tpl = get_markup_template('pwdreset.tpl');
$o .= replace_macros($tpl,