nuBuilder Forum


https://forums.nubuilder.cloud/

nuapi.php - question about zzzsys_user_id != 'globeadmin'

https://forums.nubuilder.cloud/viewtopic.php?t=8892

Page 1 of 1

nuapi.php - question about zzzsys_user_id != 'globeadmin'

Posted: Tue Mar 01, 2016 5:52 am
by mark.reynolds
In the nuapi.php file, in the function nuLogin($u, $p)
there is this sql query immediately after the check for the globeadmin user being logged in.

$s = "SELECT * FROM zzzsys_user WHERE (sus_login_name = ?
AND sus_login_password = md5(CONCAT(?, ?)))
AND zzzsys_user_id != 'globeadmin' ";

I pretty much understand it all, except for AND zzzsys_user_id != 'globeadmin'
since zzzsys_user_id seems to be an md5 hash, looking at the data in my tables.

It doesn't seem to matter though, since zzzsys_user_id can never be 'globeadmin'
in that case.

Wondering if this is a leftover bit of sql from an earlier version?
Or am I missing something?

thanks
Mark

Re: nuapi.php - question about zzzsys_user_id != 'globeadmin

Posted: Thu Mar 17, 2016 3:13 am
by admin
Mark,

It is meant to stop general users using globeadmin as a user name.

Steven
All times are UTC+02:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited