api/login: properly return LOGIN_ERROR when passed an invalid username
This commit is contained in:
parent
347b467be5
commit
bdea432bbb
|
@ -80,7 +80,13 @@
|
|||
$uid = 0;
|
||||
}
|
||||
|
||||
if ($uid && get_pref($link, "ENABLE_API_ACCESS", $uid)) {
|
||||
if (!$uid) {
|
||||
print api_wrap_reply(API_STATUS_ERR, $seq,
|
||||
array("error" => "LOGIN_ERROR"));
|
||||
return;
|
||||
}
|
||||
|
||||
if (get_pref($link, "ENABLE_API_ACCESS", $uid)) {
|
||||
if (authenticate_user($link, $login, $password)) { // try login with normal password
|
||||
print api_wrap_reply(API_STATUS_OK, $seq,
|
||||
array("session_id" => session_id()));
|
||||
|
|
Loading…
Reference in New Issue