diff options
Diffstat (limited to 'login.php')
-rw-r--r-- | login.php | 4 |
1 files changed, 2 insertions, 2 deletions
@@ -5,8 +5,8 @@ @$op = $_REQUEST["op"]; if ($op == "perform-login") { - $user = SQLite3::escapeString($_REQUEST["user"]); - $password = SQLite3::escapeString('SHA256:' . hash('sha256', "$user:" . $_REQUEST["password"])); + $user = SQLite3::escapeString(trim(mb_strtolower($_REQUEST["user"]))); + $password = SQLite3::escapeString('SHA256:' . hash('sha256', "$user:" . trim($_REQUEST["password"]))); $dbh = Db::get(); |