* fix login, password length was not checked #852
This commit is contained in:
lumapu 2023-04-04 22:50:21 +02:00
parent 6533143e80
commit c7060e40ff
3 changed files with 11 additions and 6 deletions

View file

@ -130,11 +130,13 @@ class Web {
bool prot;
prot = mProtected;
if(!prot) {
uint8_t ip[4];
ah::ip2Arr(ip, request->client()->remoteIP().toString().c_str());
for(uint8_t i = 0; i < 4; i++) {
if(mLoginIp[i] != ip[i])
prot = true;
if(strlen(mConfig->sys.adminPwd) > 0) {
uint8_t ip[4];
ah::ip2Arr(ip, request->client()->remoteIP().toString().c_str());
for(uint8_t i = 0; i < 4; i++) {
if(mLoginIp[i] != ip[i])
prot = true;
}
}
}