clones/friendica
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Switch to User::authenticate

Browse Source 
- Removed hash('whirlpool') to check password
This commit is contained in:
Hypolite Petovan
2017-11-26 14:46:08 -05:00
parent 483603e77c
commit ec6f5193e2
5 changed files with 46 additions and 62 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
mod/removeme.php
View File

@@ -26,9 +26,7 @@ function removeme_post(App $a)
return;
}
$encrypted = hash('whirlpool',trim($_POST['qxz_password']));
if ((strlen($a->user['password'])) && ($encrypted === $a->user['password'])) {
if (User::authenticate($a->user['uid'], trim($_POST['qxz_password']))) {
User::remove($a->user['uid']);
// NOTREACHED
}