Skip to content

Commit

Permalink
[Web] fix malformed_username check
Browse files Browse the repository at this point in the history
  • Loading branch information
@FreddleSpl0it @DerLinkman
FreddleSpl0it authored and DerLinkman committed Feb 8, 2024
1 parent 3d48667 commit 9beb47c
Showing 1 changed file with 17 additions and 13 deletions.
30 changes: 17 additions & 13 deletions data/web/inc/functions.auth.inc.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -47,12 +47,14 @@ function check_login($user, $pass, $app_passwd_data = false, $extra = null) {
function admin_login($user, $pass){
global $pdo;

if (!ctype_alnum(str_replace(array('_', '.', '-'), '', $user))) {
$_SESSION['return'][] = array(
'type' => 'danger',
'log' => array(__FUNCTION__, $user, '*'),
'msg' => 'malformed_username'
);
if (!filter_var($user, FILTER_VALIDATE_EMAIL) && !ctype_alnum(str_replace(array('_', '.', '-'), '', $user))) {
if (!$is_internal){
$_SESSION['return'][] = array(
'type' => 'danger',
'log' => array(__FUNCTION__, $user, '*'),
'msg' => 'malformed_username'
);
}
return false;
}

Expand Down Expand Up @@ -99,12 +101,14 @@ function admin_login($user, $pass){
function domainadmin_login($user, $pass){
global $pdo;

if (!ctype_alnum(str_replace(array('_', '.', '-'), '', $user))) {
$_SESSION['return'][] = array(
'type' => 'danger',
'log' => array(__FUNCTION__, $user, '*'),
'msg' => 'malformed_username'
);
if (!filter_var($user, FILTER_VALIDATE_EMAIL) && !ctype_alnum(str_replace(array('_', '.', '-'), '', $user))) {
if (!$is_internal){
$_SESSION['return'][] = array(
'type' => 'danger',
'log' => array(__FUNCTION__, $user, '*'),
'msg' => 'malformed_username'
);
}
return false;
}

Expand Down Expand Up @@ -315,7 +319,7 @@ function keycloak_mbox_login_rest($user, $pass, $iam_settings, $extra = null){

$is_internal = $extra['is_internal'];
$create = $extra['create'];

if (!filter_var($user, FILTER_VALIDATE_EMAIL) && !ctype_alnum(str_replace(array('_', '.', '-'), '', $user))) {
if (!$is_internal){
$_SESSION['return'][] = array(
Expand Down

0 comments on commit 9beb47c

Please sign in to comment.