yanyu/v2board
1
0
Fork 0
mirror of https://github.com/v2board/v2board.git synced 2025-10-31 09:21:46 +08:00
Code Issues Packages Projects Releases Wiki Activity

update changepassword

Browse Source
This commit is contained in:
Tokumeikoi
2020-02-02 20:44:52 +08:00
parent a8db24492b
commit 32d6a983a3
3 changed files with 15 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
app/Http/Controllers/Passport/AuthController.php
View File

@@ -7,7 +7,6 @@ use App\Http\Requests\Passport\AuthRegister;
use App\Http\Requests\Passport\AuthForget; use App\Http\Requests\Passport\AuthForget;
use App\Http\Requests\Passport\AuthLogin; use App\Http\Requests\Passport\AuthLogin;
use Illuminate\Http\Request; use Illuminate\Http\Request;
use Illuminate\Support\Facades\Mail;
use Illuminate\Support\Facades\Cache; use Illuminate\Support\Facades\Cache;
use App\Models\User; use App\Models\User;
use App\Models\InviteCode; use App\Models\InviteCode;
@@ -93,7 +92,7 @@ class AuthController extends Controller
if (!$user) { if (!$user) {
abort(500, '用户名或密码错误'); abort(500, '用户名或密码错误');
} }
if (!$this->multiPasswordVerify( if (!Helper::multiPasswordVerify(
$user->password_algo, $user->password_algo,
$password, $password,
$user->password) $user->password)
@@ -186,13 +185,4 @@ class AuthController extends Controller
'data' => true 'data' => true
]); ]);
} }
private function multiPasswordVerify($algo, $password, $hash)
{
switch($algo) {
case 'md5': return md5($password) === $hash;
case 'sha256': return hash('sha256', $password) === $hash;
default: return password_verify($password, $hash);
}
}
} }

6
app/Http/Controllers/User/UserController.php
View File

@@ -32,7 +32,11 @@ class UserController extends Controller
abort(500, '新密码不能为空'); abort(500, '新密码不能为空');
} }
$user = User::find($request->session()->get('id')); $user = User::find($request->session()->get('id'));
if (!password_verify($request->input('old_password'), $user->password)) { if (!Helper::multiPasswordVerify(
$user->password_algo,
$request->input('old_password'),
$user->password)
) {
abort(500, '旧密码有误'); abort(500, '旧密码有误');
} }
$user->password = password_hash($request->input('new_password'), PASSWORD_DEFAULT); $user->password = password_hash($request->input('new_password'), PASSWORD_DEFAULT);

9
app/Utils/Helper.php
View File

@@ -75,4 +75,13 @@ class Helper
} }
return "vmess://" . base64_encode(json_encode($config)) . "\r\n"; return "vmess://" . base64_encode(json_encode($config)) . "\r\n";
} }
public static function multiPasswordVerify($algo, $password, $hash)
{
switch($algo) {
case 'md5': return md5($password) === $hash;
case 'sha256': return hash('sha256', $password) === $hash;
default: return password_verify($password, $hash);
}
}
} }