new authentication framework with stronger passwords and real salts - please proofread!

author: Jan-Philipp Litza <janphilipp@litza.de> 2012-12-12 02:31:54 +0100
committer: Jan-Philipp Litza <janphilipp@litza.de> 2012-12-12 02:40:12 +0100
commit: db95fe6485f13c0041bbafbb0004b171cd9122e7 (patch)
tree: f5dbbc05f7ad6490dfe9586a5f3d4304ab537204 /includes/pages/admin_user.php
parent: 697b756c4ea5925ebb23e31b08ff851d024ae26d (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/includes/pages/admin_user.php b/includes/pages/admin_user.php
index 3c26062b..d9f5d749 100644
--- a/includes/pages/admin_user.php
+++ b/includes/pages/admin_user.php
@@ -240,7 +240,7 @@ function admin_user() {
 
         case 'change_pw' :
           if ($_REQUEST['new_pw'] != "" && $_REQUEST['new_pw'] == $_REQUEST['new_pw2']) {
-            sql_query("UPDATE `User` SET `Passwort`='" . sql_escape(PassCrypt($_REQUEST['new_pw'])) . "' WHERE `UID`=" . sql_escape($id) . " LIMIT 1");
+            set_password($id, $_REQUEST['new_pw']);
             $html .= success("Passwort neu gesetzt.", true);
           } else {
             $html .= error("Die Eingaben müssen übereinstimmen und dürfen nicht leer sein!", true);
author	Jan-Philipp Litza <janphilipp@litza.de>	2012-12-12 02:31:54 +0100
committer	Jan-Philipp Litza <janphilipp@litza.de>	2012-12-12 02:40:12 +0100
commit	db95fe6485f13c0041bbafbb0004b171cd9122e7 (patch)
tree	f5dbbc05f7ad6490dfe9586a5f3d4304ab537204 /includes/pages/admin_user.php
parent	697b756c4ea5925ebb23e31b08ff851d024ae26d (diff)