From 98c04fd275ba73cdddbd45b2928cb65aeda3c27a Mon Sep 17 00:00:00 2001
From: Regis Houssin <regis@dolibarr.fr>
Date: Thu, 2 Oct 2008 15:41:30 +0000
Subject: [PATCH] Fix: login possibility with no password

---
 htdocs/cashdesk/classes/Auth.class.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/htdocs/cashdesk/classes/Auth.class.php b/htdocs/cashdesk/classes/Auth.class.php
index 55af4ac8afe..8cf09307c89 100644
--- a/htdocs/cashdesk/classes/Auth.class.php
+++ b/htdocs/cashdesk/classes/Auth.class.php
@@ -103,7 +103,7 @@
 
 					$tab = $sql->fetchFirst ($res);
 
-					if ( ($tab['pass_crypted'] == md5 ($this->passwd)) || ($tab['pass'] == $this->passwd)) {
+					if ( ($tab['pass_crypted'] == md5 ($this->passwd)) || (($tab['pass'] == $this->passwd) && ($tab['pass'] != ''))) {
 
 						// On vérifie que le compte soit bien actif
 						if ( $tab['statut'] ) {