diff --git a/plugins/login-external-sso/index.php b/plugins/login-external-sso/index.php index a3264cc13..f3a215b04 100644 --- a/plugins/login-external-sso/index.php +++ b/plugins/login-external-sso/index.php @@ -23,11 +23,11 @@ class LoginExternalSsoPlugin extends \RainLoop\Plugins\AbstractPlugin $oActions = \RainLoop\Api::Actions(); $oActions->Http()->ServerNoCache(); $sKey = $this->Config()->Get('plugin', 'key', ''); - $sEmail = $_POST['Email']; - $sPassword = $_POST['Password']; - if ($sEmail && $sPassword && $sKey && $_POST['SsoKey'] == $sKey) { + $sEmail = isset($_POST['Email']) ? $_POST['Email'] : ''; + $sPassword = isset($_POST['Password']) ? $_POST['Password'] : ''; + if ($sEmail && $sPassword && $sKey && isset($_POST['SsoKey']) && $_POST['SsoKey'] == $sKey) { $sResult = \RainLoop\Api::CreateUserSsoHash($sEmail, $sPassword); - if ('json' === \strtolower($_POST['Output'] ?? '')) { + if (isset($_POST['Output']) && 'json' === \strtolower($_POST['Output'])) { \header('Content-Type: application/json; charset=utf-8'); echo \json_encode(array( 'Action' => 'ExternalSso', diff --git a/plugins/login-external/index.php b/plugins/login-external/index.php index 5d00d771b..5a9d2ae59 100644 --- a/plugins/login-external/index.php +++ b/plugins/login-external/index.php @@ -26,8 +26,8 @@ class LoginExternalPlugin extends \RainLoop\Plugins\AbstractPlugin $oAccount = null; $oException = null; - $sEmail = \trim($_POST['Email']); - $sPassword = $_POST['Password']; + $sEmail = isset($_POST['Email']) ? $_POST['Email'] : ''; + $sPassword = isset($_POST['Password']) ? $_POST['Password'] : ''; try { @@ -44,7 +44,7 @@ class LoginExternalPlugin extends \RainLoop\Plugins\AbstractPlugin $oLogger && $oLogger->WriteException($oException); } - if ('json' === \strtolower($_POST['Output'] ?? '')) { + if (isset($_POST['Output']) && 'json' === \strtolower($_POST['Output'])) { \header('Content-Type: application/json; charset=utf-8'); $aResult = array( 'Action' => 'ExternalLogin',