Fix: check user pass only if user exists
This commit is contained in:
Grail Finder
@@ -92,12 +92,13 @@ func HandleFrontLogin(w http.ResponseWriter, r *http.Request) {
|
|||||||
log.Debug("making new player", "error", err, "state", userstate)
|
log.Debug("making new player", "error", err, "state", userstate)
|
||||||
userstate = models.InitPlayer(cleanName)
|
userstate = models.InitPlayer(cleanName)
|
||||||
makeplayer = true
|
makeplayer = true
|
||||||
}
|
} else {
|
||||||
if userstate.Password != clearPass {
|
if userstate.Password != clearPass {
|
||||||
log.Error("wrong password", "username", cleanName, "password", clearPass)
|
log.Error("wrong password", "username", cleanName, "password", clearPass)
|
||||||
abortWithError(w, "wrong password")
|
abortWithError(w, "wrong password")
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
}
|
||||||
http.SetCookie(w, cookie)
|
http.SetCookie(w, cookie)
|
||||||
fi := &models.FullInfo{
|
fi := &models.FullInfo{
|
||||||
State: userstate,
|
State: userstate,
|
||||||
|
|||||||
Reference in New Issue
Block a user