class.dc.core.php

Timestamp:

03/25/16 12:43:18 (9 years ago)

Author:

franck <carnet.franck.paul@…>

Branch:

Message:

Allow different cryptographic algorithm for user password, choosen algo must provide result longer or equal than 40 characters (as default sha1), closes #1922

The constant DC_CRYPT_ALGO should be defined in config.php, and users will have to use recovery password procedure to set a new one according to the choosen algorithm.

File:

: 1 edited

inc/core/class.dc.core.php (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

inc/core/class.dc.core.php

r3230	r3231
198	198	public function checkNonce($secret)
199	199	{
	200	// 40 alphanumeric characters min
200	201	if (!preg_match('/^([0-9a-f]{40,})$/i',$secret)) {
201	202	return false;

Note: See TracChangeset for help on using the changeset viewer.

Dotclear

Context Navigation

Changeset 3231:bf7f869cfed9 for inc/core/class.dc.core.php

Legend:

inc/core/class.dc.core.php

Download in other formats:

Sites map