Verify bug fix, fetchByUsername may return false for invalid login, instead of empty model that implements the getPassword methods resulting in a fatal error. Verify should check for false and not presume fetchByUsername always returns user model

author: Lee <lee@cedita.com> 2015-05-06 14:16:45 +0100
committer: Lee <lee@cedita.com> 2015-05-06 14:16:45 +0100
commit: bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2 (patch)
tree: 3df35d477d75afb4dbf9780a597e0a380e1479f5
parent: c6edcc7741d530ee07406f037c9af1173ad9341a (diff)
download: auth-bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2.zip
auth-bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2.tar.gz
auth-bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/src/Jasny/Auth.php b/src/Jasny/Auth.php
index 107883f..e889736 100644
--- a/src/Jasny/Auth.php
+++ b/src/Jasny/Auth.php
@@ -73,7 +73,7 @@ abstract class Auth
     {
         $user = static::fetchUserByUsername($username);
         
-        if (!isset($user) || $user->getPassword() !== static::password($password, $user->getPassword())) return false;
+        if (!isset($user) || !$user || $user->getPassword() !== static::password($password, $user->getPassword())) return false;
         return $user;
     }
author	Lee <lee@cedita.com>	2015-05-06 14:16:45 +0100
committer	Lee <lee@cedita.com>	2015-05-06 14:16:45 +0100
commit	bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2 (patch)
tree	3df35d477d75afb4dbf9780a597e0a380e1479f5
parent	c6edcc7741d530ee07406f037c9af1173ad9341a (diff)
download	auth-bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2.zip auth-bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2.tar.gz auth-bd4fab1a48256d64483c7c8d0ad8bb3c33b368d2.tar.bz2