[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpgroupware-tracker] [bugs #12446] Changing loginID results in FUD use
|
From: |
Sonni |
|
Subject: |
[Phpgroupware-tracker] [bugs #12446] Changing loginID results in FUD user creation |
|
Date: |
Thu, 24 Mar 2005 14:10:16 +0000 |
|
User-agent: |
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.6) Gecko/20050311 Firefox/1.0.1 |
URL:
<http://savannah.gnu.org/bugs/?func=detailitem&item_id=12446>
Summary: Changing loginID results in FUD user creation
Project: phpGroupWare
Submitted by: sonni
Submitted on: Thu 03/24/2005 at 14:10
Item Group: 0.9.16.005
Category: phpgw-FUDForum
Severity: 3 - Normal
Priority: 1 - Later
Status: None
Privacy: Public
Assigned to: None
Open/Closed: Open
Component Version: BZIP2
Platform Version: None
Reproducibility: Every Time
Planned Release: None
Fixed Release:
_______________________________________________________
Details:
Changing an accounts loginID, from A to B, and then back to A will result in
a DB unique constrain.
At line 143 in fudforum/inc/class.ufud.inc.php
The following code is used to check if the user already exist:
$GLOBALS['phpgw']->db->query("SELECT login FROM phpgw_fud_users WHERE
login='$lid'");
but when changing an accounts loginID ($lid), the new loginID is used to
check for user existence.
The check should use the phpgq_id, like this:
$GLOBALS['phpgw']->db->query("SELECT login FROM phpgw_fud_users WHERE
phpgw_id='$id'");
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?func=detailitem&item_id=12446>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Phpgroupware-tracker] [bugs #12446] Changing loginID results in FUD user creation,
Sonni <=