Added a feature to disable certificate-login for selected client certificates

17 years ago · d8396a0147
parent 57c0dceebe
commit d8396a0147
1 changed files with 1 additions and 1 deletions
--- a/www/index.php
+++ b/www/index.php
@ -143,7 +143,7 @@

 	if($id == 4 && $_SERVER['HTTP_HOST'] == $_SESSION['_config']['securehostname'])
 	{
-		$query = "select * from `emailcerts` where `serial`='$_SERVER[SSL_CLIENT_M_SERIAL]' and `revoked`=0 and
+		$query = "select * from `emailcerts` where `serial`='$_SERVER[SSL_CLIENT_M_SERIAL]' and `revoked`=0 and disablelogin=0 and
 				UNIX_TIMESTAMP(`expire`) - UNIX_TIMESTAMP() > 0";
 		$res = mysql_query($query);
 		if(mysql_num_rows($res) > 0)