mirror/php-tinyfilemanager
1
0
Fork 0
mirror of https://github.com/prasathmani/tinyfilemanager.git synced 2025-08-06 00:38:04 +02:00
Code Issues Releases Wiki Activity

Fix : Added Password_hash() #31

Browse Source
This commit is contained in:
Prasath Mani
2018-10-16 13:53:16 +05:30
parent 484faad1d1
commit 2331ce3d0f
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
tinyfilemanager.php
View File

@@ -14,8 +14,8 @@ $use_auth = true;
// Users: array('Username' => 'Password', 'Username2' => 'Password2', ...)
$auth_users = array(
'admin' => 'admin',
'user' => '12345',
'admin' => password_hash('admin', PASSWORD_DEFAULT),
'user' => password_hash('12345', PASSWORD_DEFAULT)
);
// Readonly users (usernames array)
@@ -124,7 +124,7 @@ if ($use_auth) {
} elseif (isset($_POST['fm_usr'], $_POST['fm_pwd'])) {
// Logging In
sleep(1);
if (isset($auth_users[$_POST['fm_usr']]) && $_POST['fm_pwd'] === $auth_users[$_POST['fm_usr']]) {
if (isset($auth_users[$_POST['fm_usr']]) && password_verify($_POST['fm_pwd'], $auth_users[$_POST['fm_usr']])) {
$_SESSION['logged'] = $_POST['fm_usr'];
fm_set_msg('You are logged in');
fm_redirect(FM_SELF_URL . '?p=');