Announcement

#1 2014-07-08 08:37:23

rm
Member
2014-07-08
3

Problem of integrating PWIGO 2.7!!

Hi. Make an interesting project.
Basic core Joomla 3.3 with bridge Jfusion (PHPBB 3.1.0 + my  script (implemented through the work session cookies joomla)).
Bridge Jfusion - this bridge realized an interesting opportunity to any script!
(explaining the screenshot)
(After filling Puth and Cookie name, name Mysql, table and etc., Pwigo  slave (not registration!)
When registering the user (via a bridge jfusion, with pass “123456”) in the table «piwigo_users» added the user with a password (md5 “e10adc3949ba59abbe56e057f20f883e”).
Screenshot
But! during authentication password is changed to "this ($P$....)" Screenshot.
Authorization does not, an error occurs. Screenshot.
Help solve the problem (or ..or)
1. Fix pwigo 2.7 authorization code! only make the password md5!!
(most preferably)
(Registered users and authenticates through the core Joomla (JFusion), as well through (Jfusion) can change the Username, Password if there is a change in the tables:
(joomla_users, phpbb_users, piwigo_users)
2. Or rewrite pwigo, to work from the session cookie phpbb.
3. Find a freelancer which integrates piwigo. Give access to the test server, where everything (Joomla(Jfusion) and phpb)


Thanks in advance for your help.
PS can help with setting Jfusion.


Piwigo version:
PHP version: 5.3.28
MySQL version: 5.5.38-35.2
Piwigo URL: http://

Last edited by rm (2014-07-08 08:41:49)

Offline

 

#2 2014-07-08 08:41:55

mistic100
Former Piwigo Team
Lyon (FR)
2008-09-27
3277

Re: Problem of integrating PWIGO 2.7!!

Hi

you can change the hash function of Piwigo with (in LocalFilesEditor plugin)

Code:

$conf['password_hash'] = 'md5';
$conf['password_verify'] = 'md5_check';

function md5_check($password, $hash)
{
  return md5($password) === $hash;
}

WARNING MD5 is really, REALLY weak, it would be better if you can use phpass (the library we use for hashing) in joomla

or at least use SHA1 with a private salt

Offline

 

#3 2014-07-08 09:02:46

rm
Member
2014-07-08
3

Re: Problem of integrating PWIGO 2.7!!

mistic100 wrote:

Hi

you can change the hash function of Piwigo with (in LocalFilesEditor plugin)

Code:

$conf['password_hash'] = 'md5';
$conf['password_verify'] = 'md5_check';

function md5_check($password, $hash)
{
  return md5($password) === $hash;
}

WARNING MD5 is really, REALLY weak, it would be better if you can use phpass (the library we use for hashing) in joomla

or at least use SHA1 with a private salt

im edit 'config_default.inc.php'
delete:
$conf['password_hash'] = 'pwg_password_hash';
$conf['password_verify'] = 'pwg_password_verify';

replace:
$conf['password_hash'] = 'md5';
$conf['password_verify'] = 'md5_check';

and add string in 'include/functions_user.inc.php'

function md5_check($password, $hash)
{
  return md5($password) === $hash;
}

but..errore..
'piwigo_users' ОК. name ='piwigo', password ='e10adc3949ba59abbe56e057f20f883e'

Last edited by rm (2014-07-08 09:03:44)

Offline

 

#4 2014-07-08 09:25:33

mistic100
Former Piwigo Team
Lyon (FR)
2008-09-27
3277

Re: Problem of integrating PWIGO 2.7!!

no no no !

read me again :

in LocalFilesEditor plugin

you must NEVER modify Piwigo files

Offline

 

#5 2014-07-08 09:26:47

rm
Member
2014-07-08
3

Re: Problem of integrating PWIGO 2.7!!

Many thanks! !!!
brushed through phadmin table sessions and it worked!
;)

necessarily use further salt!

one more question.

whether in the script without the complexities piwigo change the way cookies?

now puth = '/piwigo/' and 'domain.com' (without 'point '),

I want to
puth "/" and  '. domain.com'

??

Last edited by rm (2014-07-08 09:29:44)

Offline

 

#6 2015-05-20 18:16:41

pksteit
Member
2014-11-21
1

Re: Problem of integrating PWIGO 2.7!!

Hi,

is there any chance to integrate Jfusion in my Joomla site with any Piwigo plugin?

If yes, could you give us any information?

Thanks in advance

Offline

 

Board footer

Powered by FluxBB

github twitter newsletter Donate Piwigo.org © 2002-2022 · Contact