Changeset 541

Show
Ignore:
Timestamp:
09/13/06 12:36:04 (2 years ago)
Author:
ben
Message:

Fix for login redirects and Elggs in a subdirectory. A better solution is required!

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • devel/login/index.php

    r536 r541  
    1010    $redirect_url = $CFG->wwwroot . "index.php"; 
    1111} 
     12/* 
     13    TODO: Find a more useful way to restrict redirects to 
     14    the valid Elgg domain name. 
     15 
    1216if (substr_count($redirect_url,$CFG->wwwroot) == 0) { 
    1317    $redirect_url = substr($CFG->wwwroot,0,strlen($CFG->wwwroot) - 1) . $redirect_url; 
    1418} 
    15  
     19*/ 
    1620 
    1721// if we're already logged in, redirect away again. 
     
    3135    if ($ok) { 
    3236        $messages[] = gettext("You have been logged on."); 
     37        if (md5($p) == md5("password")) { 
     38            $messages[] = gettext("The password for this account is extremely insecure and represents a major security risk. You should change it immediately."); 
     39        } 
    3340        define('redirect_url', $redirect_url); 
    3441        $_SESSION['messages'] = $messages;