Mercurial > public > src > moin > 1.9
diff MoinMoin/user.py @ 3818:fe9305d5c7cf
user: adjust tests, add one for password upgrade and fix a bug found
| author | Johannes Berg <johannes AT sipsolutions DOT net> |
|---|---|
| date | Fri, 04 Jul 2008 10:42:27 +0200 |
| parents | 88bec029f481 |
| children | b3b04ffbecd8 |
line wrap: on
line diff
--- a/MoinMoin/user.py Thu Jul 03 20:33:17 2008 +0200 +++ b/MoinMoin/user.py Fri Jul 04 10:42:27 2008 +0200 @@ -140,19 +140,20 @@ return username or (request.cfg.show_hosts and request.remote_addr) or _("<unknown>") -def encodePassword(pwd): +def encodePassword(pwd, salt=None): """ Encode a cleartext password @param pwd: the cleartext password, (unicode) - @param charset: charset used to encode password, used only for - compatibility with old passwords generated on moin-1.2. + @param salt: the salt for the password (string) @rtype: string @return: the password in apache htpasswd compatible SHA-encoding, or None """ pwd = pwd.encode('utf-8') - salt = random_string(20) + if salt is None: + salt = random_string(20) + assert isinstance(salt, str) hash = sha.new(pwd) hash.update(salt) @@ -509,6 +510,8 @@ if not password: return False, False + password = password.encode('utf-8') + if epwd[:5] == '{SHA}': enc = '{SHA}' + base64.encodestring(sha.new(password).digest()).rstrip() if epwd == enc: