From 4044a5fa5265cab619dd47e2000f90dc2e455fbe Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <fox@madoka.volgo-balt.ru>
Date: Tue, 22 Nov 2011 11:05:12 +0400
Subject: remove pointless escaping of the password (refs #392)

---
 api/index.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'api')

diff --git a/api/index.php b/api/index.php
index 4a5c1bb31..333eb0dc9 100644
--- a/api/index.php
+++ b/api/index.php
@@ -80,8 +80,8 @@
 
 		case "login":
 			$login = db_escape_string($_REQUEST["user"]);
-			$password = db_escape_string($_REQUEST["password"]);
-			$password_base64 = db_escape_string(base64_decode($_REQUEST["password"]));
+			$password = $_REQUEST["password"];
+			$password_base64 = base64_decode($_REQUEST["password"]);
 
 			if (SINGLE_USER_MODE) $login = "admin";
 
-- 
cgit v1.2.3