be more strict on password check

2018-03-23 19:21:52 +00:00 · 2018-03-23 19:21:52 +00:00 · 8767410a36
parent cb856ea624
commit 8767410a36
1 changed files with 1 additions and 1 deletions
--- a/src/node/hooks/express/webaccess.js
+++ b/src/node/hooks/express/webaccess.js
@ -37,7 +37,7 @@ exports.basicAuth = function (req, res, next) {
      var username = userpass.shift();
      var password = userpass.join(':');

-      if (settings.users[username] != undefined && settings.users[username].password == password) {
+      if (settings.users[username] != undefined && settings.users[username].password === password) {
        settings.users[username].username = username;
        req.session.user = settings.users[username];
        return cb(true);