Correct Joomla DB auth handling

Found while reading the code. Original clearly could not have worked as
it split the password field using an uninitialized delimiter.

diff --git a/helpers/basic_auth/DB/basic_db_auth.pl.in b/helpers/basic_auth/DB/basic_db_auth.pl.in
index 9a809e1264d513e0822d8764ddf9f229f2b35231..481961bedc8682b1c24f2d1ef2f73e4f5a083f86 100644 (file)
--- a/helpers/basic_auth/DB/basic_db_auth.pl.in
+++ b/helpers/basic_auth/DB/basic_db_auth.pl.in
@@ -142,7 +142,7 @@ sub check_password($$)
     if ($isjoomla){
         my $salt;
         my $key2;
-        ($key2,$salt) = split (/$salt/, $key);
+        ($key2,$salt) = plit (/:/, $key);
         return 1 if md5_hex($password.$salt).':'.$salt eq $key;
     }
     else{