Emit a warning when encryption key is not set (bug #766)

git-svn-id: https://svn.typo3.org/TYPO3v4/Core/trunk@652 709f56b5-9817-0410-a4d7-c38de5d9e867

diff --git a/t3lib/class.t3lib_befunc.php b/t3lib/class.t3lib_befunc.php
index 371d39d..87b2162 100755 (executable)
--- a/t3lib/class.t3lib_befunc.php
+++ b/t3lib/class.t3lib_befunc.php
@@ -3059,7 +3059,7 @@ class t3lib_BEfunc        {
                if($GLOBALS['BE_USER']->isAdmin())      {
                        $warnings = array();
 
-                               // Check if the Install Tool Password is still default: joh316
+                       // Check if the Install Tool Password is still default: joh316
                        if($GLOBALS['TYPO3_CONF_VARS']['BE']['installToolPassword']==md5('joh316'))     {
                                $warnings[] = 'The password of your Install Tool is still using the default value "joh316"';
                        }
@@ -3071,6 +3071,11 @@ class t3lib_BEfunc       {
                                $warnings[] = 'The backend user "admin" with password "password" is still existing';
                        }
 
+                       // Check if the encryption key is empty
+                       if ($GLOBALS['TYPO3_CONF_VARS']['SYS']['encryptionKey'] == '')  {
+                               $warnings[] = 'The encryption key is not set! Set it in $TYPO3_CONF_VARS[SYS][encryptionKey]';
+                       }
+
                        if(count($warnings))    {
                                $content = '<br />'.
                                        '<p class="typo3-red" style="font-weight: bold;">Security warning:<br />'.