From a7a9968684dca544e46e6da5338c9a452b1d8f24 Mon Sep 17 00:00:00 2001 From: Andrew Dolgov Date: Wed, 28 Jul 2010 14:32:09 +0400 Subject: [PATCH] api: properly handle incorrect UID passed to login --- api/index.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/api/index.php b/api/index.php index 64e9741a3..8d69e1a73 100644 --- a/api/index.php +++ b/api/index.php @@ -61,7 +61,7 @@ $uid = 0; } - if (get_pref($link, "ENABLE_API_ACCESS", $uid)) { + if ($uid && get_pref($link, "ENABLE_API_ACCESS", $uid)) { if (authenticate_user($link, $login, $password)) { print json_encode(array("session_id" => session_id())); } else {