yetangitu/ampache
1
0
Fork 0
mirror of https://github.com/Yetangitu/ampache synced 2025-10-06 03:49:56 +02:00
Code Issues Releases Wiki Activity

it technically logs in and streams.. but thats it, complete rewrite almost everything broken

Browse source
This commit is contained in:
Karl 'vollmerk' Vollmer 2007-04-23 07:31:05 +00:00
parent 8b27d66add
commit a31560aec4
199 changed files with 30445 additions and 33070 deletions
Download patch file Download diff file Expand all files Collapse all files

20
modules/vauth/auth.lib.php
View file

@ -60,28 +60,28 @@ function authenticate($username,$password) {
*/
function vauth_mysql_auth($username,$password) {
$username = sql_escape($username);
$password = sql_escape($password);
$username = Dba::escape($username);
$password = Dba::escape($password);
$password_check_sql = "PASSWORD('$password')";
$sql = "SELECT password FROM user WHERE username='$username'";
$db_results = mysql_query($sql, vauth_dbh());
$row = mysql_fetch_row($db_results);
$sql = "SELECT `password` FROM `user` WHERE `username`='$username'";
$db_results = Dba::query($sql);
$row = Dba::fetch_row($db_results);
$sql = "SELECT version()";
$db_results = mysql_query($sql, vauth_dbh());
$version = mysql_fetch_row($db_results);
$db_results = Dba::query($sql);
$version = Dba::fetch_row($db_results);
$mysql_version = substr(preg_replace("/(\d+)\.(\d+)\.(\d+).*/","$1$2$3",$version[0]),0,3);
if ($mysql_version > "409" AND substr($row[0],0,1) !== "*") {
$password_check_sql = "OLD_PASSWORD('$password')";
}
$sql = "SELECT username FROM user WHERE username='$username' AND password=$password_check_sql";
$db_results = mysql_query($sql, vauth_dbh());
$db_results = Dba::query($sql);
$results = mysql_fetch_assoc($db_results);
$results = Dba::fetch_assoc($db_results);
if (!$results) {
$results['success'] = false;