|
|
|
@ -400,13 +400,9 @@ function hesk_autoLogin($noredirect=0)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$res=hesk_dbFetchAssoc($result);
|
|
|
|
|
foreach ($res as $k=>$v)
|
|
|
|
|
{
|
|
|
|
|
$_SESSION[$k]=$v;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Check password */
|
|
|
|
|
if ($hash != hesk_Pass2Hash($_SESSION['pass'] . strtolower($user) . $_SESSION['pass']) )
|
|
|
|
|
if ($hash != hesk_Pass2Hash($res['pass'] . strtolower($user) . $res['pass']) )
|
|
|
|
|
{
|
|
|
|
|
setcookie('hesk_username', '');
|
|
|
|
|
setcookie('hesk_p', '');
|
|
|
|
@ -414,6 +410,12 @@ function hesk_autoLogin($noredirect=0)
|
|
|
|
|
exit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Set user details
|
|
|
|
|
foreach ($res as $k=>$v)
|
|
|
|
|
{
|
|
|
|
|
$_SESSION[$k]=$v;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Check if default password */
|
|
|
|
|
if ($_SESSION['pass'] == '499d74967b28a841c98bb4baaabaad699ff3c079')
|
|
|
|
|
{
|
|
|
|
|