diff options
| author | kaniini <ariadne@dereferenced.org> | 2019-07-18 20:29:51 +0000 |
|---|---|---|
| committer | kaniini <ariadne@dereferenced.org> | 2019-07-18 20:29:51 +0000 |
| commit | 16cfee708ec8e9c6cbbeb15432127c7757c5c173 (patch) | |
| tree | 1b036c898c34bb27ce1a42e66f845a33233ca816 | |
| parent | f9a0014681a2054ca9fec9df4729bce8bc0b4060 (diff) | |
| parent | f435217e5003dac5d749e4bb905572d51c383b29 (diff) | |
| download | pleroma-16cfee708ec8e9c6cbbeb15432127c7757c5c173.tar.gz | |
Merge branch 'tests/authentication_plug' into 'develop'
tests for Plugs.AuthenticationPlug
See merge request pleroma/pleroma!1450
| -rw-r--r-- | lib/pleroma/plugs/authentication_plug.ex | 23 | ||||
| -rw-r--r-- | test/plugs/authentication_plug_test.exs | 25 |
2 files changed, 35 insertions, 13 deletions
diff --git a/lib/pleroma/plugs/authentication_plug.ex b/lib/pleroma/plugs/authentication_plug.ex index eec514892..567674a0b 100644 --- a/lib/pleroma/plugs/authentication_plug.ex +++ b/lib/pleroma/plugs/authentication_plug.ex @@ -8,22 +8,19 @@ defmodule Pleroma.Plugs.AuthenticationPlug do alias Pleroma.User require Logger - def init(options) do - options - end + def init(options), do: options - def checkpw(password, password_hash) do - cond do - String.starts_with?(password_hash, "$pbkdf2") -> - Pbkdf2.checkpw(password, password_hash) + def checkpw(password, "$6" <> _ = password_hash) do + :crypt.crypt(password, password_hash) == password_hash + end - String.starts_with?(password_hash, "$6") -> - :crypt.crypt(password, password_hash) == password_hash + def checkpw(password, "$pbkdf2" <> _ = password_hash) do + Pbkdf2.checkpw(password, password_hash) + end - true -> - Logger.error("Password hash not recognized") - false - end + def checkpw(_password, _password_hash) do + Logger.error("Password hash not recognized") + false end def call(%{assigns: %{user: %User{}}} = conn, _), do: conn diff --git a/test/plugs/authentication_plug_test.exs b/test/plugs/authentication_plug_test.exs index 6158086ea..b55e746f8 100644 --- a/test/plugs/authentication_plug_test.exs +++ b/test/plugs/authentication_plug_test.exs @@ -54,4 +54,29 @@ defmodule Pleroma.Plugs.AuthenticationPlugTest do assert conn == ret_conn end + + describe "checkpw/2" do + test "check pbkdf2 hash" do + hash = + "$pbkdf2-sha512$160000$loXqbp8GYls43F0i6lEfIw$AY.Ep.2pGe57j2hAPY635sI/6w7l9Q9u9Bp02PkPmF3OrClDtJAI8bCiivPr53OKMF7ph6iHhN68Rom5nEfC2A" + + assert AuthenticationPlug.checkpw("test-password", hash) + refute AuthenticationPlug.checkpw("test-password1", hash) + end + + test "check sha512-crypt hash" do + hash = + "$6$9psBWV8gxkGOZWBz$PmfCycChoxeJ3GgGzwvhlgacb9mUoZ.KUXNCssekER4SJ7bOK53uXrHNb2e4i8yPFgSKyzaW9CcmrDXWIEMtD1" + + assert AuthenticationPlug.checkpw("password", hash) + refute AuthenticationPlug.checkpw("password1", hash) + end + + test "it returns false when hash invalid" do + hash = + "psBWV8gxkGOZWBz$PmfCycChoxeJ3GgGzwvhlgacb9mUoZ.KUXNCssekER4SJ7bOK53uXrHNb2e4i8yPFgSKyzaW9CcmrDXWIEMtD1" + + refute Pleroma.Plugs.AuthenticationPlug.checkpw("password", hash) + end + end end |