diff options
author | Maurício Meneghini Fauth <mauriciofauth@gmail.com> | 2018-11-11 01:18:28 +0300 |
---|---|---|
committer | Maurício Meneghini Fauth <mauriciofauth@gmail.com> | 2018-11-11 01:48:59 +0300 |
commit | d98b40281b0e8781918240b201b35758b474e595 (patch) | |
tree | 31c13f8202166bd95243b5431ef22269beb84500 /libraries/classes/UserPassword.php | |
parent | d745d1ce019bf1aa60f19e8ac993389adb81e3a9 (diff) |
Retrieve parameters from $_POST in UserPassword class
Signed-off-by: Maurício Meneghini Fauth <mauriciofauth@gmail.com>
Diffstat (limited to 'libraries/classes/UserPassword.php')
-rw-r--r-- | libraries/classes/UserPassword.php | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/libraries/classes/UserPassword.php b/libraries/classes/UserPassword.php index f6487a96cb..585463fe56 100644 --- a/libraries/classes/UserPassword.php +++ b/libraries/classes/UserPassword.php @@ -61,16 +61,16 @@ class UserPassword $error = false; $message = Message::success(__('The profile has been updated.')); - if (($_REQUEST['nopass'] != '1')) { - if (strlen($_REQUEST['pma_pw']) === 0 || strlen($_REQUEST['pma_pw2']) === 0) { + if (($_POST['nopass'] != '1')) { + if (strlen($_POST['pma_pw']) === 0 || strlen($_POST['pma_pw2']) === 0) { $message = Message::error(__('The password is empty!')); $error = true; - } elseif ($_REQUEST['pma_pw'] !== $_REQUEST['pma_pw2']) { + } elseif ($_POST['pma_pw'] !== $_POST['pma_pw2']) { $message = Message::error( __('The passwords aren\'t the same!') ); $error = true; - } elseif (strlen($_REQUEST['pma_pw']) > 256) { + } elseif (strlen($_POST['pma_pw']) > 256) { $message = Message::error(__('Password is too long!')); $error = true; } @@ -98,10 +98,10 @@ class UserPassword $serverType = Util::getServerType(); $serverVersion = $GLOBALS['dbi']->getVersion(); - if (isset($_REQUEST['authentication_plugin']) - && ! empty($_REQUEST['authentication_plugin']) + if (isset($_POST['authentication_plugin']) + && ! empty($_POST['authentication_plugin']) ) { - $orig_auth_plugin = $_REQUEST['authentication_plugin']; + $orig_auth_plugin = $_POST['authentication_plugin']; } else { $orig_auth_plugin = Privileges::getCurrentAuthenticationPlugin( 'change', $username, $hostname @@ -152,7 +152,7 @@ class UserPassword private function changePassHashingFunction() { if (Core::isValid( - $_REQUEST['authentication_plugin'], 'identical', 'mysql_old_password' + $_POST['authentication_plugin'], 'identical', 'mysql_old_password' )) { $hashing_function = 'OLD_PASSWORD'; } else { |