From d4628c6e8fc9430e6eed8f704ac21e2354fb9dac Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kasper=20Rynning-T=C3=B8nnesen?= <kasper@kasperrt.no>
Date: Mon, 29 Oct 2018 14:57:25 +0100
Subject: [PATCH] Fixed ajax-crash on userpass-protected lists

---
 server/routing/client/api.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/server/routing/client/api.js b/server/routing/client/api.js
index 6fb3419f..9c249a0a 100644
--- a/server/routing/client/api.js
+++ b/server/routing/client/api.js
@@ -581,7 +581,8 @@ router.route('/api/list/:channel_name/__np__').post(function(req, res) {
     var cookie = req.cookies._uI;
     Functions.getSessionAdminUser(cookie, channel_name, function(_u, _a) {
         if(req.body.userpass == "") {
-            userpass = crypto.createHash('sha256').update(Functions.decrypt_string(_u), 'utf8').digest("base64");
+            //userpass = Functions.hash_pass(Functions.hash_pass(Functions.decrypt_string(_u)))
+            userpass = _u;
         }
         token_db.collection("api_token").find({token: token}, function(err, token_docs) {
             var authorized = false;