public/mailcow-dockerized
1
0
Fork 0
mirror of https://github.com/mailcow/mailcow-dockerized.git synced 2025-12-15 19:06:03 +00:00
Code Issues Releases Wiki Activity

[Web] fix set_tfa for ldap users

Browse Source
This commit is contained in:
FreddleSpl0it
2024-02-20 11:34:01 +01:00
parent d22cafacc8
commit 3a1dcb3aaf
1 changed files with 9 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
data/web/inc/functions.inc.php
View File

@@ -1065,13 +1065,19 @@ function set_tfa($_data) {
// check mailbox confirm password // check mailbox confirm password
if ($access_denied === null) { if ($access_denied === null) {
$stmt = $pdo->prepare("SELECT `password` FROM `mailbox` $stmt = $pdo->prepare("SELECT `password`, `authsource` FROM `mailbox`
WHERE `username` = :username"); WHERE `username` = :username");
$stmt->execute(array(':username' => $username)); $stmt->execute(array(':username' => $username));
$row = $stmt->fetch(PDO::FETCH_ASSOC); $row = $stmt->fetch(PDO::FETCH_ASSOC);
if ($row) { if ($row) {
if (!verify_hash($row['password'], $_data["confirm_password"])) $access_denied = true; if ($row['authsource'] == 'ldap'){
else $access_denied = false; $iam_settings = identity_provider('get');
if (!ldap_mbox_login($username, $row['password'], $iam_settings)) $access_denied = true;
else $access_denied = false;
} else {
if (!verify_hash($row['password'], $_data["confirm_password"])) $access_denied = true;
else $access_denied = false;
}
} }
} }