Bug fix for #606

2018-01-15 17:13:46 +01:00 · 2018-01-15 17:13:46 +01:00 · bcc986fa11
parent b740e660b8
commit bcc986fa11
1 changed files with 10 additions and 9 deletions
--- a/bl-kernel/dbusers.class.php
+++ b/bl-kernel/dbusers.class.php
@ -79,14 +79,21 @@ class dbUsers extends dbJSON
 		$user = $this->db[$args['username']];

 		// Verify arguments with the database fields
-		foreach($args as $field=>$value) {
-			if( isset($this->dbFields[$field]) ) {
+		foreach ($args as $field=>$value) {
+			if (isset($this->dbFields[$field])) {
 				$value = Sanitize::html($value);
 				settype($value, gettype($this->dbFields[$field]['value']));
 				$user[$field] = $value;
 			}
 		}

+		// Set a new password
+		if (!empty($args['password'])) {
+			$user['salt'] = $this->generateSalt();
+			$user['password'] = $this->generatePasswordHash($args['password'], $user['salt']);
+			$user['tokenAuth'] = $this->generateAuthToken();
+		}
+
 		// Save the database
 		$this->db[$args['username']] = $user;
 		return $this->save();
@ -142,14 +149,8 @@ class dbUsers extends dbJSON

 	public function setPassword($username, $password)
 	{
-		$salt = $this->generateSalt();
-		$hash = $this->generatePasswordHash($password, $salt);
-		$tokenAuth = $this->generateAuthToken();
-
 		$args['username']	= $username;
-		$args['salt']		= $salt;
 		$args['password']	= $hash;
-		$args['tokenAuth']	= $tokenAuth;

 		return $this->set($args);
 	}
@ -221,4 +222,4 @@ class dbUsers extends dbJSON
 		}
 		return $tmp;
 	}
-}
+}