arian/navidrome
1
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

Encrypt passwords in DB (#1187)

Browse Source 
* Encode/Encrypt passwords in DB

* Only decrypts passwords if it is necessary

* Add tests for encryption functions
This commit is contained in:
Deluan Quintão
2021-06-18 18:38:38 -04:00
committed by GitHub
parent d42dfafad4
commit 66b74c81f1
12 changed files with 302 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files
server/auth.go
+1 -1
View File
@@ -152,7 +152,7 @@ func createAdminUser(ctx context.Context, ds model.DataStore, username, password
}
func validateLogin(userRepo model.UserRepository, userName, password string) (*model.User, error) {
u, err := userRepo.FindByUsername(userName)
u, err := userRepo.FindByUsernameWithPassword(userName)
if err == model.ErrNotFound {
return nil, nil
}
server/subsonic/middlewares.go
+1 -1
View File
@@ -105,7 +105,7 @@ func authenticate(ds model.DataStore) func(next http.Handler) http.Handler {
}
func validateUser(ctx context.Context, ds model.DataStore, username, pass, token, salt, jwt string) (*model.User, error) {
user, err := ds.User(ctx).FindByUsername(username)
user, err := ds.User(ctx).FindByUsernameWithPassword(username)
if err == model.ErrNotFound {
return nil, model.ErrInvalidAuth
}