X-Git-Url: https://jasonwoof.com/gitweb/?p=wfpl-cms.git;a=blobdiff_plain;f=login.php;h=e63233479aff4a0b5c3e5b2ecd26a15b8b7d871b;hp=4ec1344222c5f9a7a2c9053282a11fab12239300;hb=b568a0fee40cca8d56b7a6b7d95a919451becc77;hpb=cd38e5f5860aa72e8d0548a7ae3d8489aec48062

diff --git a/login.php b/login.php
index 4ec1344..e632334 100644
--- a/login.php
+++ b/login.php
@@ -5,7 +5,7 @@ function login_get_fields() {
 	$data = array();
 
 	$data['after_login_url'] = format_oneline(_REQUEST_cut('after_login_url'));
-	$data['username'] = format_oneline(trim(_REQUEST_cut('username')));
+	$data['username'] = format_auth_username(trim(_REQUEST_cut('username')));
 	$data['password'] = format_oneline(trim(_REQUEST_cut('password')));
 
 	return $data;
@@ -14,7 +14,7 @@ function login_get_fields() {
 function login_main() {
 	$data = login_get_fields();
 	if (strlen($data['username']) && strlen($data['password'])) {
-		$row = db_get_assoc('users', 'id,name,role,password', 'where username=%"', format_auth_username($data['username']));
+		$row = db_get_assoc('users', 'id,name,role,password', 'where username=%"', $data['username']);
 		if ($row) # &&
 		if (strlen($row['password'])) {
 			$needs_rehash = false;