fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-09 11:44:10 +09:00
Code Issues Projects Releases Packages Wiki Activity

Modify member module to make use of improved password hashing

Browse source
This commit is contained in:
Kijin Sung 2014-11-12 19:28:00 +09:00 committed by bnu
parent ca439d4440
commit 837977e26f
8 changed files with 156 additions and 59 deletions
Download patch file Download diff file Expand all files Collapse all files

25
modules/member/member.admin.controller.php
View file

@ -159,8 +159,31 @@ class memberAdminController extends member
'enable_confirm',
'webmaster_name',
'webmaster_email',
'password_strength'
'password_strength',
'password_hashing_algorithm',
'password_hashing_work_factor',
'password_hashing_auto_upgrade'
);
$oPassword = new Password();
if(!array_key_exists($args->password_hashing_algorithm, $oPassword->getSupportedAlgorithms()))
{
$args->password_hashing_algorithm = 'md5';
}
$args->password_hashing_work_factor = intval($args->password_hashing_work_factor, 10);
if($args->password_hashing_work_factor < 4)
{
$args->password_hashing_work_factor = 4;
}
if($args->password_hashing_work_factor > 16)
{
$args->password_hashing_work_factor = 16;
}
if($args->password_hashing_auto_upgrade != 'Y')
{
$args->password_hashing_auto_upgrade = 'N';
}
if((!$args->webmaster_name || !$args->webmaster_email) && $args->enable_confirm == 'Y')
{