php/lib/auth.php: Drop md5 upgrade checkHEAD master

Signed-off-by: Brian Evans <grknight@gentoo.org>
author: Brian Evans <grknight@gentoo.org> 2019-08-19 10:02:09 -0400
committer: Brian Evans <grknight@gentoo.org> 2019-08-19 10:02:09 -0400
commit: a7066d7bd83e18729d0b0a9efc3449decfa27a69 (patch)
tree: 63de98869744eaf60b49855099825521450e7528 /php/lib/auth.php
parent: sentry: set last_check timestamp (diff)
download: bouncer-a7066d7bd83e18729d0b0a9efc3449decfa27a69.tar.gz
bouncer-a7066d7bd83e18729d0b0a9efc3449decfa27a69.tar.bz2
bouncer-a7066d7bd83e18729d0b0a9efc3449decfa27a69.zip
1 files changed, 1 insertions, 3 deletions
diff --git a/php/lib/auth.php b/php/lib/auth.php
index 610b3c2..7101886 100644
--- a/php/lib/auth.php
+++ b/php/lib/auth.php
@@ -48,9 +48,7 @@ public static function query($username,$password)
     if ($res && DB::numrows($res)>0) {
         $userrow = DB::fetch($res,PDO::FETCH_ASSOC);
 	if (!password_verify($password, $userrow['password'])) {
-		if ($userrow['password'] !== md5($password))
-			return false;
-		static::password_upgrade($userrow, $username, $password);
+		return false;
 	}
 	if (password_needs_rehash($userrow['password'], PASSWORD_DEFAULT))
 		static::password_upgrade($userrow, $username, $password);
author	Brian Evans <grknight@gentoo.org>	2019-08-19 10:02:09 -0400
committer	Brian Evans <grknight@gentoo.org>	2019-08-19 10:02:09 -0400
commit	a7066d7bd83e18729d0b0a9efc3449decfa27a69 (patch)
tree	63de98869744eaf60b49855099825521450e7528 /php/lib/auth.php
parent	sentry: set last_check timestamp (diff)
download	bouncer-a7066d7bd83e18729d0b0a9efc3449decfa27a69.tar.gz bouncer-a7066d7bd83e18729d0b0a9efc3449decfa27a69.tar.bz2 bouncer-a7066d7bd83e18729d0b0a9efc3449decfa27a69.zip