Changeset

3213:c85bba8bd41a

mod_auth_internal_hashed: Empty hashpass after conversion to stored_key/server_key and store new authentication database.
author Tobias Markmann <tm@ayena.de>
date Wed, 09 Jun 2010 17:58:20 +0200
parents 3212:e416b9185c6b
children 3214:a69d8021b1db
files plugins/mod_auth_internal_hashed.lua
diffstat 1 files changed, 4 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/plugins/mod_auth_internal_hashed.lua	Wed Jun 09 17:55:04 2010 +0200
+++ b/plugins/mod_auth_internal_hashed.lua	Wed Jun 09 17:58:20 2010 +0200
@@ -66,6 +66,8 @@
 			local salted_password = credentials.hashpass:gsub("..", function(x) return string.char(tonumber(x, 16)); end);
 			credentials.stored_key = sha1(hmac_sha1(salted_password, "Client Key")):gsub(".", function (c) return ("%02x"):format(c:byte()); end);
 			credentials.server_key = hmac_sha1(salted_password, "Server Key"):gsub(".", function (c) return ("%02x"):format(c:byte()); end);
+			credentials.hashpass = nil
+			datamanager.store(username, host, "accounts", credentials);
 		end
 		
 		local valid, stored_key, server_key = getAuthenticationDatabaseSHA1(password, credentials.salt, credentials.iteration_count);
@@ -146,6 +148,8 @@
 					local salted_password = credentials.hashpass:gsub("..", function(x) return string.char(tonumber(x, 16)); end);
 					credentials.stored_key = sha1(hmac_sha1(salted_password, "Client Key")):gsub(".", function (c) return ("%02x"):format(c:byte()); end);
 					credentials.server_key = hmac_sha1(salted_password, "Server Key"):gsub(".", function (c) return ("%02x"):format(c:byte()); end);
+					credentials.hashpass = nil
+					datamanager.store(username, host, "accounts", credentials);
 				end
 				
 				local stored_key, server_key, iteration_count, salt = credentials.stored_key, credentials.server_key, credentials.iteration_count, credentials.salt;