Trim login creds

Notifiarr · Nov 26, 2023 · 66014cb · 66014cb
1 parent ee82a4b
commit 66014cb
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/root/app/www/public/ajax/login.php b/root/app/www/public/ajax/login.php
@@ -34,6 +34,12 @@
                 logger($systemLog, 'credentials check', 'info');
                 list($user, $pass) = explode(':', $login);
 
+                //-- STRIP OUT THE SPACES AND LINE BREAKS USERS ACCIDENTALLY PROVIDE
+                $user = trim($user);
+                $pass = trim($pass);
+                $_POST['user'] = trim($_POST['user']);
+                $_POST['pass'] = trim($_POST['pass']);
+
                 logger($systemLog, 'file user: \'' . $user . '\'', 'info');
                 logger($systemLog, 'file pass: \'' . $pass . '\'', 'info');
                 logger($systemLog, 'post user: \'' . $_POST['user'] . '\'', 'info');