Services / Captiveportal - prevent cleansing password field, closes https://github.com/opnsense/core/issues/5678

2026-03-14 08:34:39 +00:00 · 2022-04-05 22:30:54 +02:00 · 2022-04-05 22:30:54 +02:00 · 816d3972c8
commit 816d3972c8
parent 6ef03ba7e4
1 changed files with 2 additions and 2 deletions
--- a/src/opnsense/mvc/app/controllers/OPNsense/CaptivePortal/Api/AccessController.php
+++ b/src/opnsense/mvc/app/controllers/OPNsense/CaptivePortal/Api/AccessController.php
@ -1,7 +1,7 @@
 <?php

 /*
- * Copyright (C) 2015 Deciso B.V.
+ * Copyright (C) 20152-2022 Deciso B.V.
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
@ -148,7 +148,7 @@ class AccessController extends ApiControllerBase
                            // try this auth method
                            $isAuthenticated = $authServer->authenticate(
                                $userName,
-                                $this->request->getPost("password", "string")
+                                $this->request->getPost("password")
                            );

                            // check group when group enforcement is set