Revision 5165bfa5
Added by Jim Pingle over 3 years ago
| src/usr/local/www/head.inc | ||
|---|---|---|
| 550 | 550 |
if ($_SESSION['Username'] == "admin") {
|
| 551 | 551 |
$cu = getUserEntry("admin");
|
| 552 | 552 |
|
| 553 |
$hash = (empty($cu['bcrypt-hash']) ? $cu['password'] : $cu['bcrypt-hash']); |
|
| 554 |
|
|
| 555 |
if (password_verify($g['factory_shipped_password'], $hash)) {
|
|
| 553 |
if (local_backed("admin", $g['factory_shipped_password'])) {
|
|
| 556 | 554 |
print('<div class="alert alert-danger">' .
|
| 557 | 555 |
sprintf(gettext('%sWARNING:%s The \'admin\' account password is set to the default value. ' .
|
| 558 | 556 |
' %s Change the password in the User Manager.%s'), |
Also available in: Unified diff
Fix default password warning check. Fixes #12666
Use the existing function to check the password to avoid duplicating
effort.