Rev 4 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 4 | Rev 11 | ||
|---|---|---|---|
| Line 2... | Line 2... | ||
| 2 | 2 | ||
| 3 | if (!defined('IBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
3 | if (!defined('IBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
| 4 | 4 | ||
| 5 | if (($konfiguration[$m2]['enable_gast'] == '1') && ($konfiguration[$m2]['wipe_gastkonto'])) |
5 | if (($konfiguration[$m2]['enable_gast'] == '1') && ($konfiguration[$m2]['wipe_gastkonto'])) |
| 6 | { |
6 | { |
| 7 | $rs = db_query("SELECT `id` FROM `".$mysql_zugangsdaten['praefix']."users` WHERE `username` = '".$konfiguration[$m2]['gast_username']."' AND MD5('".$konfiguration[$m2]['gast_passwort']."') = `passwort`"); |
7 | $rs = db_query("SELECT `id` FROM `".$mysql_zugangsdaten['praefix']."users` WHERE `username` = '".$konfiguration[$m2]['gast_username']."' AND MD5('".$konfiguration[$m2]['gast_passwort']."') = `passwort`");// TODO: use sha3 hash, salted and peppered |
| 8 | 8 | ||
| 9 | if (db_num($rs) == 1) |
9 | if (db_num($rs) == 1) |
| 10 | { |
10 | { |
| 11 | $rw = db_fetch($rs); |
11 | $rw = db_fetch($rs); |
| 12 | $my_id = $rw['id']; |
12 | $my_id = $rw['id']; |