Re-use 'getUserDataByEmailAddress' in 'authenticateUserInternal'

src/Auth.php

@@ -772,17 +772,23 @@ class Auth {
 	private function authenticateUserInternal($password, $email, $rememberDuration = null) {
 		$email = self::validateEmailAddress($email);
 
+		// attempt to look up the account information using the specified email address
 		try {
-			$userData = $this->db->selectRow(
-				'SELECT id, email, password, verified, username FROM users WHERE email = ?',
-				[ $email ]
+			$userData = $this->getUserDataByEmailAddress(
+				$email,
+				[ 'id', 'email', 'password', 'verified', 'username' ]
 			);
 		}
-		catch (Error $e) {
-			throw new DatabaseError();
+		// if there is no user with the specified email address
+		catch (InvalidEmailException $e) {
+			// throttle this operation
+			$this->throttle(self::THROTTLE_ACTION_LOGIN);
+			$this->throttle(self::THROTTLE_ACTION_LOGIN, $email);
+
+			// and re-throw the exception
+			throw new InvalidEmailException();
 		}
 
-		if (!empty($userData)) {
 		$password = self::validatePassword($password);
 
 		if (password_verify($password, $userData['password'])) {
@@ -820,13 +826,6 @@ class Auth {
 			throw new InvalidPasswordException();
 		}
 	}
-		else {
-			$this->throttle(self::THROTTLE_ACTION_LOGIN);
-			$this->throttle(self::THROTTLE_ACTION_LOGIN, $email);
-
-			throw new InvalidEmailException();
-		}
-	}
 
 	/**
 	 * Returns the requested user data for the account with the specified email address (if any)