mirror/php-adminer
1
0
Fork 0
mirror of https://github.com/vrana/adminer.git synced 2025-08-12 09:34:10 +02:00
Code Issues Releases Wiki Activity

Disallow using password-less databases

Browse Source
This commit is contained in:
Jakub Vrana
2018-05-04 16:52:41 +02:00
parent db11fa4c1a
commit 60d1b7b3b4
15 changed files with 47 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
plugins/login-sqlite.php → plugins/login-password-less.php
View File

@@ -1,29 +1,31 @@
<?php
/** Enable login for SQLite
/** Enable login for password-less database
* @link https://www.adminer.org/plugins/#use
* @author Jakub Vrana, https://www.vrana.cz/
* @license https://www.apache.org/licenses/LICENSE-2.0 Apache License, Version 2.0
* @license https://www.gnu.org/licenses/gpl-2.0.html GNU General Public License, version 2 (one or other)
*/
class AdminerLoginSqlite {
class AdminerLoginPasswordLess {
/** @access protected */
var $login, $password_hash;
var $password_hash;
/** Set allowed credentials
* @param string
/** Set allowed password
* @param string result of password_hash
*/
function __construct($login, $password_hash) {
$this->login = $login;
function __construct($password_hash) {
$this->password_hash = $password_hash;
}
function credentials() {
$password = get_password();
return array(SERVER, $_GET["username"], (password_verify($password, $this->password_hash) ? "" : $password));
}
function login($login, $password) {
if (DRIVER != "sqlite" && DRIVER != "sqlite2") {
if ($password != "") {
return true;
}
return $this->login == $login && password_verify($password, $this->password_hash);
}
}