Bug fix [ 1722058 ] Server Management doesn't decrypt password

2007-05-20 07:41:38 +00:00 · 2007-05-20 07:41:38 +00:00 · e00358ebab
parent 4165e9ce5e
commit e00358ebab
1 changed files with 3 additions and 2 deletions
--- a/base/src/org/compiere/model/MUser.java
+++ b/base/src/org/compiere/model/MUser.java
@ -169,14 +169,15 @@ public class MUser extends X_AD_User
 		
 		MUser retValue = null;
 		String sql = "SELECT * FROM AD_User "
-			+ "WHERE Name=? AND Password=? AND IsActive='Y' AND AD_Client_ID=?";
+			+ "WHERE Name=? AND (Password=? OR Password=?) AND IsActive='Y' AND AD_Client_ID=?";
 		PreparedStatement pstmt = null;
 		try
 		{
 			pstmt = DB.prepareStatement (sql, null);
 			pstmt.setString (1, name);
 			pstmt.setString (2, password);
-			pstmt.setInt(3, AD_Client_ID);
+			pstmt.setString(3, SecureEngine.encrypt(password));
+			pstmt.setInt(4, AD_Client_ID);
 			ResultSet rs = pstmt.executeQuery ();
 			if (rs.next ())
 			{