summaryrefslogtreecommitdiff
path: root/login.php
diff options
context:
space:
mode:
Diffstat (limited to 'login.php')
-rw-r--r--login.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/login.php b/login.php
index 3f2c5f2..ddb25b5 100644
--- a/login.php
+++ b/login.php
@@ -5,8 +5,8 @@
@$op = $_REQUEST["op"];
if ($op == "perform-login") {
- $user = SQLite3::escapeString($_REQUEST["user"]);
- $password = SQLite3::escapeString('SHA256:' . hash('sha256', "$user:" . $_REQUEST["password"]));
+ $user = SQLite3::escapeString(trim(mb_strtolower($_REQUEST["user"])));
+ $password = SQLite3::escapeString('SHA256:' . hash('sha256', "$user:" . trim($_REQUEST["password"])));
$dbh = Db::get();
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-05 05:07:26 +0000