banananetwork
/
tt-rss
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

api/login: properly return LOGIN_ERROR when passed an invalid username

Browse Source
master
Andrew Dolgov 13 years ago
parent 347b467be5
commit bdea432bbb
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File

8
api/index.php
Unescape Escape View File

@ -80,7 +80,13 @@
$uid = 0;
}
if ($uid && get_pref($link, "ENABLE_API_ACCESS", $uid)) {
if (!$uid) {
print api_wrap_reply(API_STATUS_ERR, $seq,
array("error" => "LOGIN_ERROR"));
return;
}
if (get_pref($link, "ENABLE_API_ACCESS", $uid)) {
if (authenticate_user($link, $login, $password)) { // try login with normal password
print api_wrap_reply(API_STATUS_OK, $seq,
array("session_id" => session_id()));

Write Preview
Loading…
Cancel
Save