Khaganat-NeL/khanat-opennel-code
2
0
Fork 0
Code Issues 21 Pull requests Projects Releases 1 Packages Wiki Activity

Remove code to allow unsafe authentication

Browse source
This commit is contained in:
Stanislas Dolcini 2018-10-05 19:44:49 +02:00
parent d5f2c226ca
commit 519fd1f843
1 changed files with 2 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
code/web/public_php/login/class/ConnectionHandler.php
View file

@ -204,16 +204,8 @@ class ConnectionHandler
$permission = mysqli_fetch_assoc($result); $permission = mysqli_fetch_assoc($result);
if (!strstr($permission['AccessPrivilege'], $accessPriv)) { if (!strstr($permission['AccessPrivilege'], $accessPriv)) {
// no right to connect // no permission
if ($AcceptUnknownUser) { $reason = errorMsg(3013, $clientApplication, $domainName, $accessPriv);
// set an additionnal privilege for this player
$query = "UPDATE permission set AccessPrivilege='" . $permission['AccessPrivilege'] . ",$accessPriv' WHERE PermissionId=" . $permission['PermissionId'];
$result = mysqli_query($link, $query) or die(errorMsgBlock(3006, $query, 'main', $DBName, $DBHost, $DBUserName, mysqli_error($link)));
$reason = errorMsg(3012, $accessPriv);
} else {
// no permission
$reason = errorMsg(3013, $clientApplication, $domainName, $accessPriv);
}
} else { } else {
// // check if the user not already online // // check if the user not already online
// if ($row["State"] != "Offline") { // if ($row["State"] != "Offline") {