Remove old password check from changepassword and use verifyUser instead

author: Lukas Reschke <lukas@statuscode.ch> 2012-10-15 16:50:41 +0200
committer: Daniel Molkentin <daniel@molkentin.de> 2012-10-15 17:44:44 +0200
commit: e6b8153865a521a4750ec44016c5f22f453edfe1 (patch)
tree: 3eaaa34fd660750f78a91e387b169b567090f714 /settings/ajax/changepassword.php
parent: 6b39b80648ea022cfb5839d1ac415912cafaa417 (diff)
download: nextcloud-server-e6b8153865a521a4750ec44016c5f22f453edfe1.tar.gz
nextcloud-server-e6b8153865a521a4750ec44016c5f22f453edfe1.zip
1 files changed, 1 insertions, 2 deletions
diff --git a/settings/ajax/changepassword.php b/settings/ajax/changepassword.php
index 5eab751b04e..5d94497ce58 100644
--- a/settings/ajax/changepassword.php
+++ b/settings/ajax/changepassword.php
@@ -10,7 +10,6 @@ OC_JSON::verifyUser();
 
 $username = isset($_POST["username"]) ? $_POST["username"] : OC_User::getUser();
 $password = $_POST["password"];
-$oldPassword=isset($_POST["oldpassword"])?$_POST["oldpassword"]:'';
 
 $userstatus = null;
 if(OC_Group::inGroup(OC_User::getUser(), 'admin')) {
@@ -19,7 +18,7 @@ if(OC_Group::inGroup(OC_User::getUser(), 'admin')) {
 if(OC_SubAdmin::isUserAccessible(OC_User::getUser(), $username)) {
 	$userstatus = 'subadmin';
 }
-if(OC_User::getUser() == $username && OC_User::checkPassword($username, $oldPassword)) {
+if(OC_User::getUser() == $username) {
 	$userstatus = 'user';
 }
author	Lukas Reschke <lukas@statuscode.ch>	2012-10-15 16:50:41 +0200
committer	Daniel Molkentin <daniel@molkentin.de>	2012-10-15 17:44:44 +0200
commit	e6b8153865a521a4750ec44016c5f22f453edfe1 (patch)
tree	3eaaa34fd660750f78a91e387b169b567090f714 /settings/ajax/changepassword.php
parent	6b39b80648ea022cfb5839d1ac415912cafaa417 (diff)
download	nextcloud-server-e6b8153865a521a4750ec44016c5f22f453edfe1.tar.gz nextcloud-server-e6b8153865a521a4750ec44016c5f22f453edfe1.zip