[Web] Fixes super annoying password verification bug #867
This commit is contained in:
parent
518d346845
commit
1afca35b22
@ -129,7 +129,9 @@ function generate_tlsa_digest($hostname, $port, $starttls = null) {
|
||||
}
|
||||
function verify_ssha256($hash, $password) {
|
||||
// Remove tag if any
|
||||
$hash = ltrim($hash, '{SSHA256}');
|
||||
if (substr($hash, 0, strlen('{SSHA256}')) == '{SSHA256}') {
|
||||
$hash = substr($hash, strlen('{SSHA256}'));
|
||||
}
|
||||
// Decode hash
|
||||
$dhash = base64_decode($hash);
|
||||
// Get first 32 bytes of binary which equals a SHA256 hash
|
||||
|
Loading…
Reference in New Issue
Block a user