From 7f2253759ccdc5ab8698c447b29762314883db1a Mon Sep 17 00:00:00 2001
From: Zach Copley <zach@status.net>
Date: Wed, 10 Mar 2010 03:39:05 +0000
Subject: A blank username should never be allowed.

---
 lib/util.php | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'lib/util.php')

diff --git a/lib/util.php b/lib/util.php
index 76639e2d4..44ccc0def 100644
--- a/lib/util.php
+++ b/lib/util.php
@@ -159,6 +159,11 @@ function common_munge_password($password, $id)
 
 function common_check_user($nickname, $password)
 {
+    // empty nickname always unacceptable
+    if (empty($nickname)) {
+        return false;
+    }
+
     $authenticatedUser = false;
 
     if (Event::handle('StartCheckPassword', array($nickname, $password, &$authenticatedUser))) {
-- 
cgit v1.2.3-54-g00ecf