Files
@ 30d61922f24e
Branch filter:
Location: kallithea/dev_requirements.txt - annotation
30d61922f24e
154 B
text/plain
auth: fix crash on invalid bcrypt password
When an invalid password was specified, it would with an exception:
File "kallithea/lib/auth.py", in check_password
return bcrypt.checkpw(safe_str(password), safe_str(hashed))
ValueError: Invalid hashed_password salt
We do apparently have to catch ValueError and treat it as "invalid password".
When an invalid password was specified, it would with an exception:
File "kallithea/lib/auth.py", in check_password
return bcrypt.checkpw(safe_str(password), safe_str(hashed))
ValueError: Invalid hashed_password salt
We do apparently have to catch ValueError and treat it as "invalid password".