nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2026-01-06 11:43:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Increase the api_key required length to 30 characters or greater

Browse Source
This commit is contained in:
Mark Crane
2014-07-29 03:15:31 +00:00
parent e0bdd93196
commit 76e972ef30
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
resources/check_auth.php
View File

@@ -185,7 +185,7 @@ require_once "resources/require.php";
else { else {
//check the username and password if they don't match then redirect to the login //check the username and password if they don't match then redirect to the login
$sql = "select * from v_users "; $sql = "select * from v_users ";
if (isset($_REQUEST["key"])) { if (strlen($_REQUEST["key"]) > 30) {
$sql .= "where api_key=:key "; $sql .= "where api_key=:key ";
//$sql .= "and api_key='".$key."' "; //$sql .= "and api_key='".$key."' ";
} }
@@ -206,7 +206,7 @@ require_once "resources/require.php";
if ($_SESSION["user"]["unique"]["text"] != "global") { if ($_SESSION["user"]["unique"]["text"] != "global") {
$prep_statement->bindParam(':domain_uuid', $domain_uuid); $prep_statement->bindParam(':domain_uuid', $domain_uuid);
} }
if (isset($_REQUEST["key"])) { if (strlen($_REQUEST["key"]) > 30) {
$prep_statement->bindParam(':key', $key); $prep_statement->bindParam(':key', $key);
} }
else { else {