From: Vincent Vanwaelscappel <vincent@cubedesigners.com>
Date: Thu, 22 Jun 2023 15:14:33 +0000 (+0200)
Subject: wait #6059 @0.25
X-Git-Url: http://git.cubedesigners.com/?a=commitdiff_plain;h=a96aec13949e6b74cc81a790b0bcb59d61bf040d;p=fluidbook-toolbox.git

wait #6059 @0.25
---

diff --git a/app/Fluidbook/Compiler/Compiler.php b/app/Fluidbook/Compiler/Compiler.php
index 250354d08..20b63e288 100644
--- a/app/Fluidbook/Compiler/Compiler.php
+++ b/app/Fluidbook/Compiler/Compiler.php
@@ -86,6 +86,7 @@ class Compiler extends Base implements CompilerInterface
         ],
         'aria' => ['js/libs/aria/radio.js',],
         'bluebird' => ['js/libs/bluebird.min.js'],
+        'noaccents' => ['js/libs/noaccents.js'],
         'screenfull' => ['js/libs/screenfull.min.js'],
         'storage' => ['js/libs/storage.js',],
         'hotkeys' => ['js/libs/hotkeys.min.js',],
diff --git a/app/Fluidbook/Compiler/Secure.php b/app/Fluidbook/Compiler/Secure.php
index b718bb8b1..4f88caa1a 100644
--- a/app/Fluidbook/Compiler/Secure.php
+++ b/app/Fluidbook/Compiler/Secure.php
@@ -31,7 +31,7 @@ trait Secure
             }
             $usersalt = bin2hex(random_bytes(5));
             $user = hash("sha256", $usersalt . '+' . mb_strtolower($e[0]));
-            $users[$user] = ['salt' => $salt, 'usersalt' => $usersalt, 'hash' => hash("sha256", $salt . '-' . $e[1])];
+            $users[$user] = ['salt' => $salt, 'usersalt' => $usersalt, 'hash' => hash("sha256", $salt . '-' . Text::removeAccents($e[1]))];
         }
         return $users;
     }
@@ -83,16 +83,20 @@ trait Secure
         $variables['FORM_USERNAME'] = $locale['Username'] ?? 'Username';
         $variables['FORM_PASSWORD'] = $locale['Password'] ?? 'Password';
         $variables['FORM_SIGN_IN'] = $locale['Sign in'] ?? 'Sign in';
-        $variables['CODE'] = '$(function () {
-            $(\'form\').on(\'submit\', function () {
+        $variables['CODE'] = '
+        $(function(){
+            $(\'form\').on(\'submit\', function (e) {
+                e.preventDefault();
+
                 var u = $("#username").val().toLowerCase();
-                var p = $("#password").val();
+                var p = removeDiacritics($("#password").val());
                 var error = true;
                 $.each(CREDENTIALS, function (user, data) {
                     let hu = forge_sha256(data.usersalt + \'+\' + u);
                     let hp = forge_sha256(data.salt + \'-\' + p);
 
-                    console.log(hu,hp)
+                    console.log(data, hu, hp);
+
                     if (hu === user && hp === data.hash) {
                         error = false;
                         window.sessionStorage.setItem(\'secureUsername\', u);