Use integer values for type when inserting into ordomaincerts #3

Merged
jandd merged 2 commits from bugfix/1548-proper-type-for-orgdomain-insert into main 2023-07-17 16:46:14 +00:00
Showing only changes of commit bdb30f8898 - Show all commits

View file

@ -1964,8 +1964,8 @@ function buildSubjectFromSession() {
$csrsubject .= buildSubjectFromSession(); $csrsubject .= buildSubjectFromSession();
$type=""; $type=0;
if($_REQUEST["ocspcert"]!="" && $_SESSION['profile']['admin'] == 1) $type="8"; if($_REQUEST["ocspcert"]!="" && $_SESSION['profile']['admin'] == 1) $type=8;
if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2) if($_SESSION['_config']['rootcert'] < 1 || $_SESSION['_config']['rootcert'] > 2)
$_SESSION['_config']['rootcert'] = 1; $_SESSION['_config']['rootcert'] = 1;
@ -1978,7 +1978,7 @@ function buildSubjectFromSession() {
`subject`='".mysql_real_escape_string($csrsubject)."', `subject`='".mysql_real_escape_string($csrsubject)."',
`rootcert`='".intval($_SESSION['_config']['rootcert'])."', `rootcert`='".intval($_SESSION['_config']['rootcert'])."',
`md`='".mysql_real_escape_string($_SESSION['_config']['hash_alg'])."', `md`='".mysql_real_escape_string($_SESSION['_config']['hash_alg'])."',
`type`='".$type."', `type`=$type,
`description`='".mysql_real_escape_string($_SESSION['_config']['description'])."'"; `description`='".mysql_real_escape_string($_SESSION['_config']['description'])."'";
} else { } else {
$query = "insert into `orgdomaincerts` set $query = "insert into `orgdomaincerts` set
@ -1988,7 +1988,7 @@ function buildSubjectFromSession() {
`subject`='".mysql_real_escape_string($csrsubject)."', `subject`='".mysql_real_escape_string($csrsubject)."',
`rootcert`='".intval($_SESSION['_config']['rootcert'])."', `rootcert`='".intval($_SESSION['_config']['rootcert'])."',
`md`='".mysql_real_escape_string($_SESSION['_config']['hash_alg'])."', `md`='".mysql_real_escape_string($_SESSION['_config']['hash_alg'])."',
`type`='".$type."', `type`=$type,
`description`='".mysql_real_escape_string($_SESSION['_config']['description'])."'"; `description`='".mysql_real_escape_string($_SESSION['_config']['description'])."'";
} }
mysql_query($query); mysql_query($query);