]> git.mxchange.org Git - friendica.git/commitdiff
Remove SQL column legacy_password
authorAlexandre Alapetite <alexandre@alapetite.fr>
Sun, 8 Apr 2018 12:53:12 +0000 (14:53 +0200)
committerAlexandre Alapetite <alexandre@alapetite.fr>
Sun, 8 Apr 2018 12:53:12 +0000 (14:53 +0200)
database.sql
src/Database/DBStructure.php
src/Model/User.php
src/Util/ExAuth.php
update.php

index aa87247db35c57dc2f68a079a1abe70995d28e6c..c4b93e2873bbb5f2cea9ee4081bdd78c69c6144a 100644 (file)
@@ -1019,7 +1019,6 @@ CREATE TABLE IF NOT EXISTS `user` (
        `guid` varchar(64) NOT NULL DEFAULT '' COMMENT '',
        `username` varchar(255) NOT NULL DEFAULT '' COMMENT '',
        `password` varchar(255) NOT NULL DEFAULT '' COMMENT '',
-       `legacy_password` boolean NOT NULL DEFAULT '0' COMMENT 'Is the password hash double-hashed?',
        `nickname` varchar(255) NOT NULL DEFAULT '' COMMENT '',
        `email` varchar(255) NOT NULL DEFAULT '' COMMENT '',
        `openid` varchar(255) NOT NULL DEFAULT '' COMMENT '',
index 67c8d7b8a646a49bbb0cf44f49747cd72088ba32..275d9562bbc695f56867ce32c1ff6a45cb4b864e 100644 (file)
@@ -1726,7 +1726,6 @@ class DBStructure
                                                "guid" => ["type" => "varchar(64)", "not null" => "1", "default" => "", "comment" => ""],
                                                "username" => ["type" => "varchar(255)", "not null" => "1", "default" => "", "comment" => ""],
                                                "password" => ["type" => "varchar(255)", "not null" => "1", "default" => "", "comment" => ""],
-                                               "legacy_password" => ["type" => "boolean", "not null" => "1", "default" => "0", "comment" => "Is the password hash double-hashed?"],
                                                "nickname" => ["type" => "varchar(255)", "not null" => "1", "default" => "", "comment" => ""],
                                                "email" => ["type" => "varchar(255)", "not null" => "1", "default" => "", "comment" => ""],
                                                "openid" => ["type" => "varchar(255)", "not null" => "1", "default" => "", "comment" => ""],
index ef495a45c2e96fc3668d1121d632911aa54c90a7..6178906aa278d5bdc0a192dba214139fbc01accb 100644 (file)
@@ -170,13 +170,12 @@ class User
 
                        if (!isset($user['uid'])
                                || !isset($user['password'])
-                               || !isset($user['legacy_password'])
                        ) {
                                throw new Exception(L10n::t('Not enough information to authenticate'));
                        }
                } elseif (is_int($user_info) || is_string($user_info)) {
                        if (is_int($user_info)) {
-                               $user = dba::selectFirst('user', ['uid', 'password', 'legacy_password'],
+                               $user = dba::selectFirst('user', ['uid', 'password'],
                                        [
                                                'uid' => $user_info,
                                                'blocked' => 0,
@@ -186,7 +185,7 @@ class User
                                        ]
                                );
                        } else {
-                               $user = dba::fetch_first('SELECT `uid`, `password`, `legacy_password`
+                               $user = dba::fetch_first('SELECT `uid`, `password`
                                        FROM `user`
                                        WHERE (`email` = ? OR `username` = ? OR `nickname` = ?)
                                        AND `blocked` = 0
@@ -277,7 +276,6 @@ class User
                        'password' => $pasword_hashed,
                        'pwdreset' => null,
                        'pwdreset_time' => null,
-                       'legacy_password' => false
                ];
                return dba::update('user', $fields, ['uid' => $uid]);
        }
index d4436e32afaad55b83759f8f53784cef027becee..cdf663b42c21202eec6cf5eb1c201dd51e6947b0 100644 (file)
@@ -226,7 +226,7 @@ class ExAuth
                if ($a->get_hostname() == $aCommand[2]) {
                        $this->writeLog(LOG_INFO, 'internal auth for ' . $sUser . '@' . $aCommand[2]);
 
-                       $aUser = dba::selectFirst('user', ['uid', 'password', 'legacy_password'], ['nickname' => $sUser]);
+                       $aUser = dba::selectFirst('user', ['uid', 'password'], ['nickname' => $sUser]);
                        if (DBM::is_result($aUser)) {
                                $uid = $aUser['uid'];
                                $success = User::authenticate($aUser, $aCommand[3]);
index bc14b3a29fbbca7b2a317d8d5a9a8fa3baced7ea..0cbc0302fd4ae78c11d3bfa01794877079040376 100644 (file)
@@ -149,12 +149,9 @@ function update_1203() {
 }
 
 function update_1244() {
-       // Sets legacy_password for all legacy hashes
-       dba::update('user', ['legacy_password' => true], ['SUBSTR(password, 1, 4) != "$2y$"']);
-
        // All legacy hashes are re-hashed using the new secure hashing function
-       $stmt = dba::select('user', ['uid', 'password'], ['legacy_password' => true]);
-       while($user = dba::fetch($stmt)) {
+       $stmt = dba::select('user', ['uid', 'password'], ['password NOT LIKE "$%"']);
+       while ($user = dba::fetch($stmt)) {
                dba::update('user', ['password' => User::hashPassword($user['password'])], ['uid' => $user['uid']]);
        }