Solve bug for passwords with special characters

https://github.com/marienfressinaud/FreshRSS/issues/328#issuecomment-43250647
author: Alexandre Alapetite <alexandre@alapetite.fr> 2014-06-14 14:19:44 +0200
committer: Alexandre Alapetite <alexandre@alapetite.fr> 2014-06-14 14:19:44 +0200
commit: ab233dc2d29a36c58495a87b23a7a7883c7a7dbd (patch)
tree: 165753c2b1feb9fd85d48a93928b897da7256eda /app/Controllers
parent: 49110afaa8b930ddaa39a897c46dc80e66d3118e (diff)
1 files changed, 4 insertions, 4 deletions
diff --git a/app/Controllers/usersController.php b/app/Controllers/usersController.php
index fa967cedc..38b8f829b 100644
--- a/app/Controllers/usersController.php
+++ b/app/Controllers/usersController.php
@@ -17,7 +17,7 @@ class FreshRSS_users_Controller extends Minz_ActionController {
 		if (Minz_Request::isPost()) {
 			$ok = true;
 
-			$passwordPlain = Minz_Request::param('passwordPlain', false);
+			$passwordPlain = Minz_Request::param('passwordPlain', '', true);
 			if ($passwordPlain != '') {
 				Minz_Request::_param('passwordPlain');	//Discard plain-text password ASAP
 				$_POST['passwordPlain'] = '';
@@ -32,7 +32,7 @@ class FreshRSS_users_Controller extends Minz_ActionController {
 			}
 			Minz_Session::_param('passwordHash', $this->view->conf->passwordHash);
 
-			$passwordPlain = Minz_Request::param('apiPasswordPlain', false);
+			$passwordPlain = Minz_Request::param('apiPasswordPlain', '', true);
 			if ($passwordPlain != '') {
 				if (!function_exists('password_hash')) {
 					include_once(LIB_PATH . '/password_compat.php');
@@ -45,7 +45,7 @@ class FreshRSS_users_Controller extends Minz_ActionController {
 			}
 
 			if (Minz_Configuration::isAdmin(Minz_Session::param('currentUser', '_'))) {
-				$this->view->conf->_mail_login(Minz_Request::param('mail_login', false));
+				$this->view->conf->_mail_login(Minz_Request::param('mail_login', '', true));
 			}
 			$email = $this->view->conf->mail_login;
 			Minz_Session::_param('mail', $email);
@@ -119,7 +119,7 @@ class FreshRSS_users_Controller extends Minz_ActionController {
 			}
 			if ($ok) {
 			
-				$passwordPlain = Minz_Request::param('new_user_passwordPlain', false);
+				$passwordPlain = Minz_Request::param('new_user_passwordPlain', '', true);
 				$passwordHash = '';
 				if ($passwordPlain != '') {
 					Minz_Request::_param('new_user_passwordPlain');	//Discard plain-text password ASAP
author	Alexandre Alapetite <alexandre@alapetite.fr>	2014-06-14 14:19:44 +0200
committer	Alexandre Alapetite <alexandre@alapetite.fr>	2014-06-14 14:19:44 +0200
commit	ab233dc2d29a36c58495a87b23a7a7883c7a7dbd (patch)
tree	165753c2b1feb9fd85d48a93928b897da7256eda /app/Controllers
parent	49110afaa8b930ddaa39a897c46dc80e66d3118e (diff)