Commit f3f299c2 authored by Thomas Löffler's avatar Thomas Löffler

Uses LDAP validation only when accessing via SOAP

parent ad6454db
Pipeline #2131 passed with stages
in 1 minute and 29 seconds
......@@ -147,10 +147,7 @@ class tx_ter_helper
$objPHPass = \TYPO3\CMS\Saltedpasswords\Salt\SaltFactory::getSaltingInstance($row['password']);
// we do not consider 'C' or 'M' prefixed salted password hashes
// as password strings on typo3.org are not updated ones
if ($row['password'] !== $accountData->password && !$objPHPass->checkPassword(
$accountData->password, $row['password']
) && !$this->ldapValidationSucceeded($accountData)
) {
if (!$this->ldapValidationSucceeded($accountData)) {
throw new tx_ter_exception_unauthorized ('Wrong password.', TX_TER_ERROR_GENERAL_WRONGPASSWORD);
}
} else {
......
  • Lines 147 - 149 can be removed as well. $objPHPass isn't needed any more and the comment also does not fit any more

Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment