Fixed ajax-crash on userpass-protected lists

2025-10-29 18:00:23 +00:00 · 2018-10-29 14:57:25 +01:00
parent 3998817b62
commit d4628c6e8f
1 changed files with 2 additions and 1 deletions
--- a/server/routing/client/api.js
+++ b/server/routing/client/api.js
@@ -581,7 +581,8 @@ router.route('/api/list/:channel_name/__np__').post(function(req, res) {
    var cookie = req.cookies._uI;
    Functions.getSessionAdminUser(cookie, channel_name, function(_u, _a) {
        if(req.body.userpass == "") {
-            userpass = crypto.createHash('sha256').update(Functions.decrypt_string(_u), 'utf8').digest("base64");
+            //userpass = Functions.hash_pass(Functions.hash_pass(Functions.decrypt_string(_u)))
+            userpass = _u;
        }
        token_db.collection("api_token").find({token: token}, function(err, token_docs) {
            var authorized = false;