api/login: properly return LOGIN_ERROR when passed an invalid username

This commit is contained in:
Andrew Dolgov 2011-04-13 14:18:33 +04:00
parent 347b467be5
commit bdea432bbb
1 changed files with 7 additions and 1 deletions

View File

@ -80,7 +80,13 @@
$uid = 0;
}
if ($uid && get_pref($link, "ENABLE_API_ACCESS", $uid)) {
if (!$uid) {
print api_wrap_reply(API_STATUS_ERR, $seq,
array("error" => "LOGIN_ERROR"));
return;
}
if (get_pref($link, "ENABLE_API_ACCESS", $uid)) {
if (authenticate_user($link, $login, $password)) { // try login with normal password
print api_wrap_reply(API_STATUS_OK, $seq,
array("session_id" => session_id()));