forks/baikal
1
0
Fork 0
Code Releases Activity

Fix authentication bypass

Browse source 
See https://github.com/fruux/Baikal/issues/673 for more details
This commit is contained in:
Florian Mutter 2017-04-28 11:11:23 +02:00 committed by GitHub
parent 5dfcf7ad07
commit 2cbb7deb9d
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
Core/Frameworks/Baikal/Core/PDOBasicAuth.php
View file

@ -69,7 +69,7 @@ class PDOBasicAuth extends \Sabre\DAV\Auth\Backend\AbstractBasic {
if (!count($result)) return false;
$hash = md5($username . ':' . $this->authRealm . ':' . $password);
if ($result[0]['digesta1'] == $hash)
if ($result[0]['digesta1'] === $hash)
{
$this->currentUser = $username;
return true;