diff options
| author | Anika Henke <anika@selfthinker.org> | 2013-06-02 23:14:12 +0100 |
|---|---|---|
| committer | Anika Henke <anika@selfthinker.org> | 2013-06-02 23:14:12 +0100 |
| commit | 20beef63b4694afdc3d6c434c3d27c982b6a986b (patch) | |
| tree | 9800833361010fe16a2f25a2b2e75a1b569f39f8 /inc/auth.php | |
| parent | bc1e9ee1b1fffcb554afced8504270032c97341f (diff) | |
| parent | 21c9604e66bcb42ab5267e9873738a6e22250103 (diff) | |
| download | rpg-20beef63b4694afdc3d6c434c3d27c982b6a986b.tar.gz rpg-20beef63b4694afdc3d6c434c3d27c982b6a986b.tar.bz2 | |
Merge remote-tracking branch 'origin/master' into loggedin-class
Diffstat (limited to 'inc/auth.php')
| -rw-r--r-- | inc/auth.php | 15 |
1 files changed, 10 insertions, 5 deletions
diff --git a/inc/auth.php b/inc/auth.php index 68b6b438d..1f8489f03 100644 --- a/inc/auth.php +++ b/inc/auth.php @@ -48,10 +48,15 @@ function auth_setup() { // try to load auth backend from plugins foreach ($plugin_controller->getList('auth') as $plugin) { - if ($conf['authtype'] === $plugin) { - $auth = $plugin_controller->load('auth', $plugin); - break; - } + if ($conf['authtype'] === $plugin) { + $auth = $plugin_controller->load('auth', $plugin); + break; + } elseif ('auth' . $conf['authtype'] === $plugin) { + // matches old auth backends (pre-Weatherwax) + $auth = $plugin_controller->load('auth', $plugin); + msg('Your authtype setting is deprecated. You must set $conf[\'authtype\'] = "auth' . $conf['authtype'] . '"' + . ' in your configuration (see <a href="https://www.dokuwiki.org/auth">Authentication Backends</a>)',-1,'','',MSG_ADMINS_ONLY); + } } if(!isset($auth) || !$auth){ @@ -988,7 +993,7 @@ function act_resendpwd() { } // generate auth token - $token = md5(auth_cookiesalt().$user); //secret but user based + $token = md5(uniqid(mt_rand(), true)); // random secret $tfile = $conf['cachedir'].'/'.$token{0}.'/'.$token.'.pwauth'; $url = wl('', array('do'=> 'resendpwd', 'pwauth'=> $token), true, '&'); |