mirror/cowyo
1
0
Fork 0
mirror of https://github.com/schollz/cowyo.git synced 2023-08-10 21:13:00 +03:00
Code Issues Projects Releases Wiki Activity

Passwords stored as hashes instead of on the server

Browse Source
This commit is contained in:
Zack Scholl
2016-09-10 07:45:36 -04:00
parent 87e5439854
commit ccfe66e973
3 changed files with 21 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
routes.go
View File

@@ -149,7 +149,8 @@ func encryptionRoute(c *gin.Context) {
if err != nil {
panic(err)
}
p.Locked = jsonLoad.Password
hashedPassword, _ := HashPassword([]byte(jsonLoad.Password))
p.Locked = string(hashedPassword)
p.save(p.CurrentText)
c.JSON(200, gin.H{
"status": "posted",
@@ -173,7 +174,9 @@ func encryptionRoute(c *gin.Context) {
if err != nil {
panic(err)
}
if len(p.Locked) > 0 && p.Locked == jsonLoad.Password {
if len(p.Locked) > 0 &&
(p.Locked == jsonLoad.Password ||
CheckPasswordHash([]byte(p.Locked), []byte(jsonLoad.Password)) == nil) {
p.Locked = ""
p.save(p.CurrentText)
c.JSON(200, gin.H{