From: skodak <skodak>
Date: Wed, 31 Dec 2008 15:53:31 +0000 (+0000)
Subject: MDL-17203 prevent disclosing of sensitive information
X-Git-Url: http://git.mjollnir.org/gw?a=commitdiff_plain;h=804656ff9bfee884b93af0a06cb08cdf56c98795;p=moodle.git

MDL-17203 prevent disclosing of sensitive information
---

diff --git a/calendar/export_execute.php b/calendar/export_execute.php
index d5ee4ada63..6634d12a1e 100644
--- a/calendar/export_execute.php
+++ b/calendar/export_execute.php
@@ -15,12 +15,12 @@ if (empty($CFG->enablecalendarexport)) {
 //Fetch user information
 if (!$user = get_complete_user_data('username', $username)) {
    //No such user
-   die("No such user '$username'");
+    die('Invalid authentication');
 }
 
 //Check authentication token
 if ($authtoken != sha1($username . $user->password . $CFG->calendar_exportsalt)) {
-    die('Invalid authentication token');
+    die('Invalid authentication');
 }
 
 $what = optional_param('preset_what', 'all', PARAM_ALPHA);