mysql 사용시 old_password, password에 대해서 제대로 처리되도록 코드 수정 (제로보드4에서 이전시 적용되는 부분)

git-svn-id: http://xe-core.googlecode.com/svn/sandbox@2704 201d5d3c-b55e-5fd7-737f-ddc643e51545
2026-01-07 02:31:40 +09:00 · 2007-10-09 08:17:08 +00:00 · 2007-10-09 08:17:08 +00:00 · a201d8bf00
commit a201d8bf00
parent 6e3ae53763
3 changed files with 12 additions and 8 deletions
--- a/classes/db/DBMysql.class.php
+++ b/classes/db/DBMysql.class.php
@ -191,11 +191,12 @@
        /**
         * @brief mysql old password를 가져오는 함수 (mysql에서만 사용)
         **/
-        function getOldPassword($password) {
-            $query = sprintf("select old_password('%s') as password", $password);
+        function isValidOldPassword($password, $saved_password) {
+            $query = sprintf("select password('%s') as password, old_password('%s') as old_password", $this->addQuotes($password), $this->addQuotes($password));
            $result = $this->_query($query);
            $tmp = $this->_fetch($result);
-            return $tmp->password;
+            if($tmp->password == $saved_password || $tmp->old_password == $saved_password) return true;
+            return false;
        }

        /**
--- a/classes/db/DBMysql_innodb.class.php
+++ b/classes/db/DBMysql_innodb.class.php
@ -200,11 +200,12 @@
        /**
         * @brief mysql old password를 가져오는 함수 (mysql에서만 사용)
         **/
-        function getOldPassword($password) {
-            $query = sprintf("select old_password('%s') as password", $password);
+        function isValidOldPassword($password, $saved_password) {
+            $query = sprintf("select password('%s') as password, old_password('%s') as old_password", $this->addQuotes($password), $this->addQuotes($password));
            $result = $this->_query($query);
            $tmp = $this->_fetch($result);
-            return $tmp->password;
+            if($tmp->password == $saved_password || $tmp->old_password == $saved_password) return true;
+            return false;
        }

        /**