prevent logging in without @ in the email address via imap and pop3 auth methods

This commit is contained in:
SJ 2013-12-04 13:26:05 +01:00
parent e133a41570
commit c0e1bec960

View File

@ -253,7 +253,7 @@ class ModelUserAuth extends Model {
private function checkLoginAgainstIMAP($username = '', $password = '') {
$session = Registry::get('session');
$user = array();
if(!strchr($username, '@')) { return 0; }
$imap = new Zend_Mail_Protocol_Imap(IMAP_HOST, IMAP_PORT, IMAP_SSL);
if($imap->login($username, $password)) {
@ -271,7 +271,6 @@ class ModelUserAuth extends Model {
private function checkLoginAgainstPOP3($username = '', $password = '') {
$user = array();
$rc = 0;
try {