Rev 4 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
Rev 4 | Rev 11 | ||
---|---|---|---|
Line 2... | Line 2... | ||
2 | 2 | ||
3 | if (!defined('IBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
3 | if (!defined('IBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
4 | 4 | ||
5 | if (($konfiguration[$m2]['enable_gast'] == '1') && ($konfiguration[$m2]['wipe_gastkonto'])) |
5 | if (($konfiguration[$m2]['enable_gast'] == '1') && ($konfiguration[$m2]['wipe_gastkonto'])) |
6 | { |
6 | { |
7 | $rs = db_query("SELECT `id` FROM `".$mysql_zugangsdaten['praefix']."users` WHERE `username` = '".$konfiguration[$m2]['gast_username']."' AND MD5('".$konfiguration[$m2]['gast_passwort']."') = `passwort`"); |
7 | $rs = db_query("SELECT `id` FROM `".$mysql_zugangsdaten['praefix']."users` WHERE `username` = '".$konfiguration[$m2]['gast_username']."' AND MD5('".$konfiguration[$m2]['gast_passwort']."') = `passwort`");// TODO: use sha3 hash, salted and peppered |
8 | 8 | ||
9 | if (db_num($rs) == 1) |
9 | if (db_num($rs) == 1) |
10 | { |
10 | { |
11 | $rw = db_fetch($rs); |
11 | $rw = db_fetch($rs); |
12 | $my_id = $rw['id']; |
12 | $my_id = $rw['id']; |