version 1.2.2.5, 2012/05/27 10:12:48
|
version 1.2.2.6, 2012/06/26 08:05:58
|
Line 101 mqtt_rtlm_login(cfg_root_t *cfg, sqlite3 *sql, const c
|
Line 101 mqtt_rtlm_login(cfg_root_t *cfg, sqlite3 *sql, const c
|
/* insert into Users values (NULL, "", "", 1, strftime('%s','now')); */ |
/* insert into Users values (NULL, "", "", 1, strftime('%s','now')); */ |
int ret = 0; |
int ret = 0; |
sqlite3_stmt *stmt; |
sqlite3_stmt *stmt; |
char *str, szStmt[BUFSIZ] = { 0 }; | char *str, *psStmt; |
|
|
if (!sql) |
if (!sql) |
return -1; |
return -1; |
Line 111 mqtt_rtlm_login(cfg_root_t *cfg, sqlite3 *sql, const c
|
Line 111 mqtt_rtlm_login(cfg_root_t *cfg, sqlite3 *sql, const c
|
mqtt_rtlm_log("Error:: not found users table name"); |
mqtt_rtlm_log("Error:: not found users table name"); |
return -1; |
return -1; |
} |
} |
snprintf(szStmt, sizeof szStmt, "SELECT DISTINCT Username, Password, Access FROM %s " | psStmt = sqlite3_mprintf("SELECT DISTINCT Username, Password, Access FROM %s " |
"WHERE Username = '%s' AND Password = '%s' AND Access > 0;", str, user, pass); | "WHERE Username = '%q' AND Password = '%q' AND Access > 0;", str, user, pass); |
|
|
if (sqlite3_prepare_v2(sql, szStmt, strlen(szStmt), &stmt, NULL)) { | if (sqlite3_prepare_v2(sql, psStmt, strlen(psStmt), &stmt, NULL)) { |
MQTT_RTLM_LOG(sql); |
MQTT_RTLM_LOG(sql); |
|
sqlite3_free(psStmt); |
return -1; |
return -1; |
} | } else |
| sqlite3_free(psStmt); |
while (sqlite3_step(stmt) == SQLITE_ROW) { |
while (sqlite3_step(stmt) == SQLITE_ROW) { |
if (sqlite3_data_count(stmt) < 1) |
if (sqlite3_data_count(stmt) < 1) |
ret = 0; |
ret = 0; |