be more strict on password check
This commit is contained in:
parent
cb856ea624
commit
8767410a36
|
@ -37,7 +37,7 @@ exports.basicAuth = function (req, res, next) {
|
|||
var username = userpass.shift();
|
||||
var password = userpass.join(':');
|
||||
|
||||
if (settings.users[username] != undefined && settings.users[username].password == password) {
|
||||
if (settings.users[username] != undefined && settings.users[username].password === password) {
|
||||
settings.users[username].username = username;
|
||||
req.session.user = settings.users[username];
|
||||
return cb(true);
|
||||
|
|
Loading…
Reference in New Issue