]> git.wh0rd.org - tt-rss.git/blobdiff - classes/auth/base.php
git.wh0rd.org / tt-rss.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
auth_base: choose random password if not supplied by auth module
[tt-rss.git] / classes / auth / base.php
diff --git a/classes/auth/base.php b/classes/auth/base.php
index c77df51577cb0314582170ffbef7a67169673611..69acd0985c6ceb87a173eafa2983a411589a07ff 100644 (file)
--- a/classes/auth/base.php
+++ b/classes/auth/base.php
@@ -16,10 +16,12 @@ class Auth_Base {
 
        // Auto-creates specified user if allowed by system configuration
        // Can be used instead of find_user_by_login() by external auth modules
-       function auto_create_user($login, $password) {
+       function auto_create_user($login, $password = false) {
                if ($login && defined('AUTH_AUTO_CREATE') && AUTH_AUTO_CREATE) {
                        $user_id = $this->find_user_by_login($login);
 
+                       if (!$password) $password = make_password();
+
                        if (!$user_id) {
                                $login = $this->dbh->escape_string($login);
                                $salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/