- don't set password via remoting if field is empty

Marius Cramer

2015-08-06 37b29231e47a0c4458dc1c15d98588f16f07e1e2

 interface/web/admin/server_config_edit.php

@@ -43,6 +43,8 @@

//* Check permissions for module
$app->auth->check_module_permissions('admin');
$app->auth->check_security_permissions('admin_allow_server_config');


// Loading classes
$app->uses('tpl,tform,tform_actions');
@@ -91,10 +93,14 @@
            }
         }

         $server_config_array[$section] = $app->tform->encode($this->dataRecord, $section);
         $server_config_str = $app->ini_parser->get_ini_string($server_config_array);
         if($app->tform->errorMessage == '') {
            $server_config_array[$section] = $app->tform->encode($this->dataRecord, $section);
            $server_config_str = $app->ini_parser->get_ini_string($server_config_array);

         $app->db->datalogUpdate('server', "config = '".$app->db->quote($server_config_str)."'", 'server_id', $server_id);
            $app->db->datalogUpdate('server', array("config" => $server_config_str), 'server_id', $server_id);
         } else {
            $app->error('Security breach!');
         }
      }
   }