lunax/snipe_it
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity Actions

Fixed strpos to !== FALSE in ProfileController for complexity eval

Browse source
This commit is contained in:
snipe 2020-11-02 22:28:56 -08:00
parent e6f53a53bc
commit b828985151
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
app/Http/Controllers/ProfileController.php
View file

@ -166,7 +166,7 @@ class ProfileController extends Controller
// There may be a more elegant way to do this in the future. // There may be a more elegant way to do this in the future.
// First let's see if that option is enabled in the settings // First let's see if that option is enabled in the settings
if (strpos(Setting::passwordComplexityRulesSaving('store'), 'disallow_same_pwd_as_user_fields')) { if (strpos(Setting::passwordComplexityRulesSaving('store'), 'disallow_same_pwd_as_user_fields') !== FALSE) {
if (($request->input('password') == $user->username) || if (($request->input('password') == $user->username) ||
($request->input('password') == $user->email) || ($request->input('password') == $user->email) ||
($request->input('password') == $user->first_name) || ($request->input('password') == $user->first_name) ||