From ef2186d47fc70c2c83115eeffa3b200a027388dd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?P=C3=B2sweg?= <posweg@posweg.es>
Date: Sun, 31 May 2020 04:42:31 +0200
Subject: [PATCH] Input password two times on registration

---
 index.php | 1 +
 login.php | 6 +++++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/index.php b/index.php
index 51adabf..7057fed 100644
--- a/index.php
+++ b/index.php
@@ -5,6 +5,7 @@ include("include/settings.php");
 <!DOCTYPE html>
 <html>
 <head>
+<title>LibreCat</title>
 <?php include("themes/$theme_name/index.php"); ?>
 </head>
 <body>
diff --git a/login.php b/login.php
index d4a8af5..77ea8f7 100644
--- a/login.php
+++ b/login.php
@@ -33,7 +33,10 @@ if($validUser){
 
 $regErrorMsg = "";
 if(isset($_POST["reg"])){
-	if(password_verify($_POST["invite"],"$2y$10\$Mofyx6QsxEartbq..53zlu.FwTX0aMmUeRCNnISvfmrC44iA1SfSO")){
+	if($_POST["password"] != $_POST["rep_password"]){
+		$regErrorMsg = "Passwords don't match";
+	}
+	else if(password_verify($_POST["invite"],"$2y$10\$Mofyx6QsxEartbq..53zlu.FwTX0aMmUeRCNnISvfmrC44iA1SfSO")){
 		if($_POST["regname"]){
 
 			// Set user
@@ -97,6 +100,7 @@ if(isset($_POST["reg"])){
 	<form name="input" action="" method="post">
 		<label for="regname">Username:</label><input type="text" value="<?= $_POST["regname"] ?>" id="regname" name="regname"/><br/>
 		<label for="password">Password:</label><input type="password" id="password" name="password"/><br/>
+		<label for="password">Repeat pass:</label><input type="password" id="password" name="rep_password"/><br/>
 		<label for="invite">Invite code:</label><input type="text" value="<?= $_POST["invite"] ?>" id="invite" name="invite"/><br/>
 		<?php if(isset($regErrorMsg)) echo "<p class='errmsg'>$regErrorMsg</p>\n"; ?>
 		<input type="submit" value="Register" name="reg"/>