mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-03 21:27:38 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

mod_auth_internal_hashed: Fixed SCRAM-SHA-1 mechanism to not traceback on non-existent users.

Browse source
This commit is contained in:
Waqas Hussain 2010-07-17 19:34:06 +05:00
parent 5be7de51a6
commit 41da5ba5b5
1 changed files with 5 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

8
plugins/mod_auth_internal_hashed.lua
View file

@ -144,10 +144,12 @@ function new_hashpass_provider(host)
return usermanager.test_password(prepped_username, password, realm), true;
end,
scram_sha_1 = function(username, realm)
local credentials = datamanager.load(username, host, "accounts") or {};
local credentials = datamanager.load(username, host, "accounts");
if not credentials then return; end
if credentials.password then
usermanager.set_password(username, credentials.password, host);
credentials = datamanager.load(username, host, "accounts") or {};
credentials = datamanager.load(username, host, "accounts");
if not credentials then return; end
end
-- convert hexpass to stored_key and server_key
@ -159,7 +161,7 @@ function new_hashpass_provider(host)
credentials.hashpass = nil
datamanager.store(username, host, "accounts", credentials);
end
local stored_key, server_key, iteration_count, salt = credentials.stored_key, credentials.server_key, credentials.iteration_count, credentials.salt;
stored_key = stored_key and from_hex(stored_key);
server_key = server_key and from_hex(server_key);