loncom/auth/lonauth.pm - diff

Return to lonauth.pm CVS log

Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonauth.pm between versions 1.121.2.12 and 1.121.2.14

-version 1.121.2.12, 2014/10/04 13:21:48
+version 1.121.2.14, 2016/08/11 09:24:13
  Line 103  sub success {
          if ($destsymb =~ /___/) {
              # FIXME Need to deal with encrypted symbs and urls as needed.
              my ($map,$resid,$desturl)=split(/___/,$destsymb);
-             unless ($desturl=~/^(adm|editupload|public)/) {
+             $desturl = &Apache::lonnet::clutter($desturl);
-                 $desturl = &Apache::lonnet::clutter($desturl);
-             }
              $desturl = &HTML::Entities::encode($desturl,'"<>&');
              $destsymb = &HTML::Entities::encode($destsymb,'"<>&');
              $destination .= 'destinationurl='.$desturl.
- Line 358  sub handler {
+ Line 356  sub handler {
          (undef,$form{'iptoken'}) = split('=',$iptokenstr);
      }
-     my $keybin=pack("H16",$key);
+     my $upass = &Apache::loncommon::des_decrypt($key,$form{'upass0'});
-     my $cipher;
-     if ($Crypt::DES::VERSION>=2.03) {
- 	$cipher=new Crypt::DES $keybin;
-     }
-     else {
- 	$cipher=new DES $keybin;
-     }
-     my $upass='';
-     for (my $i=0;$i<=2;$i++) {
- 	my $chunk=
- 	    $cipher->decrypt(unpack("a8",pack("H16",substr($form{'upass'.$i},0,16))));
- 	$chunk.=
- 	    $cipher->decrypt(unpack("a8",pack("H16",substr($form{'upass'.$i},16,16))));
- 	$chunk=substr($chunk,1,ord(substr($chunk,0,1)));
- 	$upass.=$chunk;
-     }
  # ---------------------------------------------------------------- Authenticate

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.121.2.12
changed lines
	Added in v.1.121.2.14