nextcloud/passman
1
1
Fork 0
mirror of https://github.com/nextcloud/passman.git synced 2025-11-08 13:11:31 +08:00
Code Issues Projects Releases Packages Wiki Activity

Add hash_equals

Browse source
This commit is contained in:
EdOverflow 2017-01-04 16:59:14 +01:00
parent f18e4f60e9
commit cf59eee98c
No known key found for this signature in database
GPG key ID: 39E31D6F1516A53E
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
controller/credentialcontroller.php
View file

@ -142,7 +142,7 @@ class CredentialController extends ApiController {
);
if ($storedCredential->getUserId() !== $this->userId) {
if (!hash_equals($storedCredential->getUserId(), $this->userId)) {
$acl = $this->sharingService->getCredentialAclForUser($this->userId, $storedCredential->getGuid());
if ($acl->hasPermission(SharingACL::WRITE)) {
$credential['shared_key'] = $storedCredential->getSharedKey();
@ -219,7 +219,7 @@ class CredentialController extends ApiController {
'', array(),
$link, $target_user, Activity::TYPE_ITEM_ACTION);
}
if ($this->userId !== $storedCredential->getUserId()) {
if (!hash_equals($this->userId, $storedCredential->getUserId())) {
$this->activityService->add(
$activity, $params,
'', array(),