Switched to PBKDF2 password hash

2018-08-08 19:54:31 +02:00 · 2018-08-08 19:54:31 +02:00 · cbf6ef31f2
commit cbf6ef31f2
parent f339582025
5 changed files with 33 additions and 27 deletions
--- a/src/zall/action/user/ModifyUserStatusAction.java
+++ b/src/zall/action/user/ModifyUserStatusAction.java
@ -37,10 +37,10 @@ public class ModifyUserStatusAction extends ZalleryAction {
            if (request.getParameter("email") != null)
                target_user.setEmail(request.getParameter("email"));
            if (request.getParameter("password") != null) {
-                if (target_user.getPassword() == null)
+                if (target_user.getPasswordHash() == null)
                    target_user.setPassword(request.getParameter("password"));
                else if (request.getParameter("oldPassword") != null)
-                    if (target_user.getPassword().equals(request.getParameter("oldPassword")))
+                    if (target_user.getPasswordHash().equals(request.getParameter("oldPassword")))
                        target_user.setPassword(request.getParameter("password"));
                    else {
                        msgs.add(new UserMessage(MessageLevel.ERROR, "Wrong password!"));