-
Notifications
You must be signed in to change notification settings - Fork 182
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Prevent login warning on PHP 5.6+ #171
Conversation
According to the documentation, both arguments of return hash_equals((string)$a, (string)$b); |
The second is the user password which will always be a string, even if nothing is entered, so that isn't a problem. |
@Chris98 Well, it is currently. But it is an assumption to say it will always be that way. What if down the line we convert empty strings to null values somewhere? By typecasting the |
I don't really anticipate this changing anytime soon ;) I'll leave this to the devs as to what they would like. Personally, I don't see any benefit from the additional cast. |
Add additional cast
I've updated the PR and it's now casting both of them. |
Prevent login warning on PHP 5.6+
@Chris98 Thanks, merged. This way we ensure that the input is always what the function expects it to be, so it gives more consistency. |
This has been merged into the wrong branch. ;) Before we merge any further PRs, I will clean up the branches. |
@franzliedke Oh snap, sorry! 😭 |
It's fine, though. If we're lucky, reverting is not necessary. ;) |
Fix for ticket #1058
You might have to check my PR to make sure it's ok :P