Auth: small tweak for previous makes it easier to read

865b2731 · Franco Fichtner · 20ec899a · 865b2731
Commit 865b2731 authored Jul 13, 2017 by Franco Fichtner
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 2 deletions

TOTP.php src/opnsense/mvc/app/library/OPNsense/Auth/TOTP.php +3 -2

No files found.
--- a/src/opnsense/mvc/app/library/OPNsense/Auth/TOTP.php
+++ b/src/opnsense/mvc/app/library/OPNsense/Auth/TOTP.php
@@ -154,13 +154,14 @@ trait TOTP
        if ($userObject != null && !empty($userObject->otp_seed)) {
            if (strlen($password) > $this->otpLength) {
                // split otp token code and userpassword
+                $pwLength = strlen($password) - $this->otpLength;
                $pwStart = $this->otpLength;
                $otpStart = 0;
                if ($this->passwordFirst) {
-                    $otpStart = strlen($password) - $this->otpLength;
+                    $otpStart = $pwLength;
                    $pwStart = 0;
                }
-                $userPassword = substr($password, $pwStart, strlen($password) - $this->otpLength);
+                $userPassword = substr($password, $pwStart, $pwLength);
                $code = substr($password, $otpStart, $this->otpLength);
                $otp_seed = \Base32\Base32::decode($userObject->otp_seed);
                if ($this->authTOTP($otp_seed, $code)) {