浏览代码

Fixed problem where username was overwritten with cookie's value in Opera.
Hopefuly the end of the quotemeta problem for usernames and passwords.

Tyler Akins 24 年之前
父节点
当前提交
300a60e573
共有 1 个文件被更改,包括 5 次插入3 次删除
  1. 5 3
      src/redirect.php

+ 5 - 3
src/redirect.php

@@ -29,7 +29,7 @@
 
    session_register ("base_uri");
 
-   if(!isset($username)) {
+   if(!isset($login_username)) {
       exit;
    }
 
@@ -56,10 +56,12 @@
       $key = OneTimePadEncrypt($secretkey, $onetimepad);
       session_register("onetimepad");
       // verify that username and password are correct
-      $imapConnection = sqimap_login($username, quotemeta($key), $imapServerAddress, $imapPort, 0);
+      if ($force_username_lowercase)
+          username = strtolower($login_username);
+      $imapConnection = sqimap_login($login_username, $key, $imapServerAddress, $imapPort, 0);
       sqimap_logout($imapConnection);
 
-      setcookie("username", $username, 0, $base_uri);
+      setcookie("username", $login_username, 0, $base_uri);
       setcookie("key", $key, 0, $base_uri);
       setcookie("logged_in", 1, 0, $base_uri);
       do_hook ("login_verified");