added safeguard for password conversion

2013-08-11 13:02:53 +02:00
parent cbc5c5725d
commit 6d4c46d8c0
1 changed files with 8 additions and 0 deletions
--- a/local/maintenance/update_passwords.php
+++ b/local/maintenance/update_passwords.php
@@ -38,7 +38,15 @@ while ($r = sql_fetch_array($rs))
 	}
 	$pwhash = crypt::secondStagePasswordEncryption($password);

+	$oldpw = sql_value("SELECT `password` FROM `user` WHERE `user_id`='&1'", '', $r['user_id']);
 	sql("UPDATE `user` SET `password`='&1' WHERE `user_id`='&2'", $pwhash, $r['user_id']);
+
+	if ($pwhash != sql_value("SELECT `password` FROM `user` WHERE `user_id`='&1'", '', $r['user_id']))
+	{
+		sql("UPDATE `user` SET `password`='&1' WHERE `user_id`='&2'", $oldpw, $r['user_id']);
+		echo "Error!\nCould not store new password. Password field not updated to 128 chars?\n\n";
+		break;
+	}
 }

 mysql_free_result($rs);