fernando/luos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

PMCORE-1207 Generic message for wrong credentials and AD users

Browse Source
This commit is contained in:
Roly Rudy Gutierrez Pinto
2020-10-07 22:59:04 -04:00
parent 65393a354c
commit a7d8067341
5 changed files with 171 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
workflow/engine/methods/login/authentication.php
View File

@@ -50,7 +50,9 @@ try {
$enterprise->setup();
}
/*----------------------------------********---------------------------------*/
$uid = $RBAC->VerifyLogin($usr , $pwd);
Cache::put('ldapMessageError', '', 2);
$uid = $RBAC->VerifyLogin($usr, $pwd);
$ldapMessageError = Cache::pull('ldapMessageError');
$RBAC->cleanSessionFiles(72); //cleaning session files older than 72 hours
switch ($uid) {
@@ -148,7 +150,11 @@ try {
$d = serialize(['u' => $usr, 'p' => $pwd, 'm' => G::LoadTranslation($errLabel)]);
$urlLogin = $urlLogin . '?d=' . base64_encode($d);
} else {
G::SendTemporalMessage($errLabel, "warning");
if (empty($ldapMessageError)) {
G::SendTemporalMessage($errLabel, "warning");
} else {
G::SendTemporalMessage($ldapMessageError, "warning", "string");
}
}
$u = (array_key_exists('form', $_POST) && array_key_exists('URL', $_POST['form']))? 'u=' . urlencode(htmlspecialchars_decode($_POST['form']['URL'])) : '';