Creating new user now uses the new password hashing scheme

author: Kevin James 'purdyk' Purdy <purdyk@gmail.com> 2008-11-03 17:55:29 +0000
committer: Kevin James 'purdyk' Purdy <purdyk@gmail.com> 2008-11-03 17:55:29 +0000
commit: dd15bf25ca6f7169a4a1796613513ab6fd9c6102 (patch)
tree: f0309cfe3974bc474ce58ce04d7e67e2dddc852e /lib/class/user.class.php
parent: 9b19ca160e4792203363f78c2314d5a5b5dcf52a (diff)
download: ampache-dd15bf25ca6f7169a4a1796613513ab6fd9c6102.tar.gz
ampache-dd15bf25ca6f7169a4a1796613513ab6fd9c6102.tar.bz2
ampache-dd15bf25ca6f7169a4a1796613513ab6fd9c6102.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/lib/class/user.class.php b/lib/class/user.class.php
index ebb29d00..29c9b05d 100644
--- a/lib/class/user.class.php
+++ b/lib/class/user.class.php
@@ -614,10 +614,11 @@ class User extends database_object {
 		$fullname	= Dba::escape($fullname);
 		$email		= Dba::escape($email);
 		$access		= Dba::escape($access);
-	
+		$password_hashed = hash('sha256', $password);
+
 		/* Now Insert this new user */
 		$sql = "INSERT INTO `user` (`username`, `fullname`, `email`, `password`, `access`, `create_date`) VALUES" .
-			" ('$username','$fullname','$email',PASSWORD('$password'),'$access','" . time() ."')";
+			" ('$username','$fullname','$email','$password_hashed','$access','" . time() ."')";
 		$db_results = Dba::write($sql);
 		
 		if (!$db_results) { return false; }
author	Kevin James 'purdyk' Purdy <purdyk@gmail.com>	2008-11-03 17:55:29 +0000
committer	Kevin James 'purdyk' Purdy <purdyk@gmail.com>	2008-11-03 17:55:29 +0000
commit	dd15bf25ca6f7169a4a1796613513ab6fd9c6102 (patch)
tree	f0309cfe3974bc474ce58ce04d7e67e2dddc852e /lib/class/user.class.php
parent	9b19ca160e4792203363f78c2314d5a5b5dcf52a (diff)
download	ampache-dd15bf25ca6f7169a4a1796613513ab6fd9c6102.tar.gz ampache-dd15bf25ca6f7169a4a1796613513ab6fd9c6102.tar.bz2 ampache-dd15bf25ca6f7169a4a1796613513ab6fd9c6102.zip