";
exit();
}
$auth_hash = md5($user->authenticator.$user->email_addr);
// if no password set, set password to account key
//
if (!strlen($user->passwd_hash)) {
$user->passwd_hash = $auth_hash;
mysql_query("update user set passwd_hash='$user->passwd_hash' where id=$user->id");
}
// if the given password hash matches (auth+email), accept it
//
if ($user->passwd_hash == $passwd_hash || $auth_hash == $passwd_hash) {
echo "\n";
echo "$user->authenticator\n";
echo "\n";
} else {
xml_error(-206);
}
?>