fix: vérification du mdp en cas de mdp non défini #37
@ -84,9 +84,11 @@ class SQLLoginUserAuthenticator extends AbstractLoginFormAuthenticator
|
|||||||
$request->getSession()->set(self::ERROR_LOGIN, true);
|
$request->getSession()->set(self::ERROR_LOGIN, true);
|
||||||
throw new AuthenticationException();
|
throw new AuthenticationException();
|
||||||
}
|
}
|
||||||
if (!$remoteHashedPassword) {
|
|
||||||
throw new Exception('Erreur inconnue');
|
if (null === $remoteHashedPassword) {
|
||||||
|
$remoteHashedPassword = "";
|
||||||
}
|
}
|
||||||
|
|
||||||
try {
|
try {
|
||||||
// Comparaison remote hash et hash du input password + salt
|
// Comparaison remote hash et hash du input password + salt
|
||||||
$this->passwordHasher->verify($remoteHashedPassword, $plaintextPassword, $remoteSalt);
|
$this->passwordHasher->verify($remoteHashedPassword, $plaintextPassword, $remoteSalt);
|
||||||
|
Loading…
Reference in New Issue
Block a user