$auth, 'message' => $auth, 'errorCode' => 403, 'callback' => $callback, ) ); // Regular mode } else { yourls_login_screen( $auth ); } die(); } yourls_do_action( 'auth_successful' ); /* * The following code is a shim that helps users store passwords securely in config.php * by storing a password hash and removing the plaintext. * * TODO: Remove this once real user management is implemented. */ $dismiss_url = yourls_admin_url( 'index.php?dismiss=hasherror' ); $message = <<config.php isn't writable?
You may dismiss this message for one week. or see UsernamePassword for details. EOD; if ( isset( $_GET['dismiss'] ) && $_GET['dismiss'] == 'hasherror' ) { yourls_update_option( 'defer_hashing_error', time() + 86400 * 7 ); } if ( !defined( 'YOURLS_NO_HASH_PASSWORD' ) ) { if ( yourls_has_cleartext_passwords() ) { $success = yourls_hash_passwords_now(); if ( !$success ) { $ignore_time = yourls_get_option( 'defer_hashing_error' ); if ( time() > $ignore_time ) { yourls_add_notice( $message ); } } } }