Pbkdf2.verify_pass --> AuthenticationPlug.checkpw

2020-05-14 08:42:27 -05:00 · 2020-05-14 08:42:27 -05:00 · 5b0f27d23d
commit 5b0f27d23d
parent 9cbf17d59f
4 changed files with 7 additions and 4 deletions
--- a/lib/pleroma/bbs/authenticator.ex
+++ b/lib/pleroma/bbs/authenticator.ex
@ -4,6 +4,7 @@

 defmodule Pleroma.BBS.Authenticator do
  use Sshd.PasswordAuthenticator
+  alias Pleroma.Plugs.AuthenticationPlug
  alias Pleroma.User

  def authenticate(username, password) do
@ -11,7 +12,7 @@ def authenticate(username, password) do
    password = to_string(password)

    with %User{} = user <- User.get_by_nickname(username) do
-      Pbkdf2.verify_pass(password, user.password_hash)
+      AuthenticationPlug.checkpw(password, user.password_hash)
    else
      _e -> false
    end
--- a/lib/pleroma/plugs/authentication_plug.ex
+++ b/lib/pleroma/plugs/authentication_plug.ex
@ -41,7 +41,7 @@ def call(
        } = conn,
        _
      ) do
-    if Pbkdf2.verify_pass(password, password_hash) do
+    if checkpw(password, password_hash) do
      conn
      |> assign(:user, auth_user)
      |> OAuthScopesPlug.skip_plug()
--- a/lib/pleroma/web/auth/totp_authenticator.ex
+++ b/lib/pleroma/web/auth/totp_authenticator.ex
@ -5,6 +5,7 @@
 defmodule Pleroma.Web.Auth.TOTPAuthenticator do
  alias Pleroma.MFA
  alias Pleroma.MFA.TOTP
+  alias Pleroma.Plugs.AuthenticationPlug
  alias Pleroma.User

  @doc "Verify code or check backup code."
@ -30,7 +31,7 @@ def verify_recovery_code(
        code
      )
      when is_list(codes) and is_binary(code) do
-    hash_code = Enum.find(codes, fn hash -> Pbkdf2.verify_pass(code, hash) end)
+    hash_code = Enum.find(codes, fn hash -> AuthenticationPlug.checkpw(code, hash) end)

    if hash_code do
      MFA.invalidate_backup_code(user, hash_code)
--- a/lib/pleroma/web/mongooseim/mongoose_im_controller.ex
+++ b/lib/pleroma/web/mongooseim/mongoose_im_controller.ex
@ -5,6 +5,7 @@
 defmodule Pleroma.Web.MongooseIM.MongooseIMController do
  use Pleroma.Web, :controller

+  alias Pleroma.Plugs.AuthenticationPlug
  alias Pleroma.Plugs.RateLimiter
  alias Pleroma.Repo
  alias Pleroma.User
@ -27,7 +28,7 @@ def user_exists(conn, %{"user" => username}) do
  def check_password(conn, %{"user" => username, "pass" => password}) do
    with %User{password_hash: password_hash, deactivated: false} <-
           Repo.get_by(User, nickname: username, local: true),
-         true <- Pbkdf2.verify_pass(password, password_hash) do
+         true <- AuthenticationPlug.checkpw(password, password_hash) do
      conn
      |> json(true)
    else