We use cookies to ensure you get the best experience on our website
Halaman utama Jelajahi Bantuan
Daftar Masuk
0ct0pu5
/
g-node-gin
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Jelajahi Sumber

[GINR] allow for old gin password evaluation

cgars 8 tahun lalu
induk
67e41e5c5c
melakukan
40cfbdb97d
1 mengubah file dengan 8 tambahan dan 0 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 8 0
      models/user.go

+ 8 - 0
models/user.go
Tampilan Berkas 

@@ -33,6 +33,7 @@ import (
 
 	"github.com/gogits/gogs/pkg/avatar"
 
 	"github.com/gogits/gogs/pkg/setting"
 
 	"github.com/gogits/gogs/pkg/tool"
 
+	"golang.org/x/crypto/bcrypt"
 
 )
 
 
 type UserType int
 
@@ -317,8 +318,15 @@ func (u *User) EncodePasswd() {
 
 	u.Passwd = fmt.Sprintf("%x", newPasswd)
 
 }
 
 
+func (u *User) OldGinVerifyPassword(plain string) bool {
 
+	err := bcrypt.CompareHashAndPassword([]byte(u.Passwd), []byte(plain))
 
+	return err == nil
 
+}
 
 // ValidatePassword checks if given password matches the one belongs to the user.
 
 func (u *User) ValidatePassword(passwd string) bool {
 
+	if u.OldGinVerifyPassword(passwd) {
 
+		return true
 
+	}
 
 	newUser := &User{Passwd: passwd, Salt: u.Salt}
 
 	newUser.EncodePasswd()
 
 	return subtle.ConstantTimeCompare([]byte(u.Passwd), []byte(newUser.Passwd)) == 1

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5