]> git.koha-community.org Git - koha.git/commit
Bug 14507 Use checkpw to check password in Patron Info
authorColin Campbell <colin.campbell@ptfs-europe.com>
Wed, 5 Aug 2015 11:55:41 +0000 (12:55 +0100)
committerFrédéric Demians <f.demians@tamil.fr>
Tue, 1 Mar 2016 13:49:19 +0000 (14:49 +0100)
commit44375ad31f8e74cac362912caf3e322c8b822ae3
treeb8ed3e04d5c70aebc4d91fbb6446711b2a701866
parent29c1b8d9ac577725f7b0447402b853424a85d182
Bug 14507 Use checkpw to check password in Patron Info

Some devices are using patron information responses to validate
patron passwords to govern access to facilities as we
were using C4::Auth::checkpw_hash this only worked in a db password
context not other authentication routines.
The C4::Auth routines are not very consistent and there isnt a dropin
replacement for checkpw_hash this calls checkpw instead.
In a password only environment this behaves as the old version did
returning field CQ as Y if a valid password or no password is passed in
the patron info request and N if an incorrect password is supplied
It should also test against the appropriate authentication sources if
othere autrhentication schemes are in use

Signed-off-by: Liz Rea <liz@catalyst.net.nz>
Tested this with a client who reports that this enables SIP authentication to work correctly with their LDAP server.

Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>
Signed-off-by: Brendan Gallagher brendan@bywatersolutions.com
(cherry picked from commit 0810027bfadd50fe4b93088e9939327fd4c7f6e9)
Signed-off-by: Julian Maurice <julian.maurice@biblibre.com>
(cherry picked from commit cd5640eb9f8835862d695a2572ad9017b771c13c)
Signed-off-by: Frédéric Demians <f.demians@tamil.fr>
C4/SIP/ILS/Patron.pm