From a7066d7bd83e18729d0b0a9efc3449decfa27a69 Mon Sep 17 00:00:00 2001
From: Brian Evans <grknight@gentoo.org>
Date: Mon, 19 Aug 2019 10:02:09 -0400
Subject: php/lib/auth.php: Drop md5 upgrade check

Signed-off-by: Brian Evans <grknight@gentoo.org>
---
 php/lib/auth.php | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/php/lib/auth.php b/php/lib/auth.php
index 610b3c2..7101886 100644
--- a/php/lib/auth.php
+++ b/php/lib/auth.php
@@ -48,9 +48,7 @@ public static function query($username,$password)
     if ($res && DB::numrows($res)>0) {
         $userrow = DB::fetch($res,PDO::FETCH_ASSOC);
 	if (!password_verify($password, $userrow['password'])) {
-		if ($userrow['password'] !== md5($password))
-			return false;
-		static::password_upgrade($userrow, $username, $password);
+		return false;
 	}
 	if (password_needs_rehash($userrow['password'], PASSWORD_DEFAULT))
 		static::password_upgrade($userrow, $username, $password);
-- 
cgit v1.2.3-65-gdbad