Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
Overview
| Comment: | Do not allow a login to occur if the USER.INFO field contains the text "expires YYYY-MM-DD" where YYYY-MM-DD is not in the future. |
|---|---|
| Downloads: | Tarball | ZIP archive | SQL archive |
| Timelines: | family | ancestors | descendants | both | trunk |
| Files: | files | file ages | folders |
| SHA1: |
9271b4bb350532d953dcd39c3faa68ac |
| User & Date: | drh 2015-09-24 02:03:35 |
Context
|
2015-09-25
| ||
| 00:02 | Update the built-in SQLite to the 3.8.12 alpha that includes the ShmBarrier fix. ... (check-in: 96e698d2 user: drh tags: trunk) | |
|
2015-09-24
| ||
| 02:03 | Do not allow a login to occur if the USER.INFO field contains the text "expires YYYY-MM-DD" where YYYY-MM-DD is not in the future. ... (check-in: 9271b4bb user: drh tags: trunk) | |
|
2015-09-20
| ||
| 18:17 | merge "stash cat" ... (check-in: ba9d3f08 user: bch tags: trunk) | |
Changes
Changes to src/login.c.
| ︙ | ︙ | |||
214 215 216 217 218 219 220 |
char *zSha1Pw = sha1_shared_secret(zPasswd, zUsername, 0);
int const uid =
db_int(0,
"SELECT uid FROM user"
" WHERE login=%Q"
" AND length(cap)>0 AND length(pw)>0"
" AND login NOT IN ('anonymous','nobody','developer','reader')"
| | > > | 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 |
char *zSha1Pw = sha1_shared_secret(zPasswd, zUsername, 0);
int const uid =
db_int(0,
"SELECT uid FROM user"
" WHERE login=%Q"
" AND length(cap)>0 AND length(pw)>0"
" AND login NOT IN ('anonymous','nobody','developer','reader')"
" AND (pw=%Q OR (length(pw)<>40 AND pw=%Q))"
" AND (info NOT LIKE '%%expires 20%%'"
" OR substr(info,instr(lower(info),'expires')+8,10)>datetime('now'))",
zUsername, zSha1Pw, zPasswd
);
free(zSha1Pw);
return uid;
}
/*
|
| ︙ | ︙ |