YunoHost/SSOwat
1
0
Fork 0
mirror of https://github.com/YunoHost/SSOwat.git synced 2024-09-03 20:06:27 +02:00
Code Issues Projects Releases Packages Wiki Activity

authUser is defined only if authHash is accepted

Browse source
This commit is contained in:
Kay0u 2020-05-21 22:57:57 +02:00
parent 6a240e1dea
commit 397f7b3910
No known key found for this signature in database
GPG key ID: AAFEEB16CFA2AE2D
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
helpers.lua
View file

@ -244,13 +244,14 @@ function refresh_logged_in()
if session_key and session_key ~= "" then if session_key and session_key ~= "" then
-- Check cache -- Check cache
if cache:get(user.."-password") then if cache:get(user.."-password") then
authUser = user
local hash = hmac_sha512(srvkey, local hash = hmac_sha512(srvkey,
authUser.. user..
"|"..expireTime.. "|"..expireTime..
"|"..session_key) "|"..session_key)
if hash ~= authHash then if hash ~= authHash then
logger.info("Hash "..authHash.." rejected for "..user.."@"..ngx.var.remote_addr) logger.info("Hash "..authHash.." rejected for "..user.."@"..ngx.var.remote_addr)
else
authUser = user
end end
is_logged_in = hash == authHash is_logged_in = hash == authHash
return is_logged_in return is_logged_in