ruby-srp 0.1.1 has to_json method - simplifies controller

author: Azul <azul@leap.se> 2012-10-05 16:47:19 +0200
committer: Azul <azul@leap.se> 2012-10-05 16:47:19 +0200
commit: c2d5a80b576ffc5f9ff0807c9a52fec8b4f34123 (patch)
tree: 7eb8a55218ad4e2f385a84b026e12d78d40270cf /users/app
parent: 76e4a13c3d2cc16c552d2205c8659be686f3718c (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/users/app/controllers/sessions_controller.rb b/users/app/controllers/sessions_controller.rb
index b8043f5..284c0e2 100644
--- a/users/app/controllers/sessions_controller.rb
+++ b/users/app/controllers/sessions_controller.rb
@@ -9,7 +9,7 @@ class SessionsController < ApplicationController
     @user = User.find_by_param(params[:login])
     session[:handshake] = @user.initialize_auth(params['A'].hex)
     User.current = @user #?
-    render :json => { :B => session[:handshake].bb.to_s(16), :salt => @user.password_salt }
+    render :json => session[:handshake]
   rescue RECORD_NOT_FOUND
     render :json => {:errors => {:login => ["unknown user"]}}
   end
@@ -18,10 +18,10 @@ class SessionsController < ApplicationController
     # TODO: validate the id belongs to the session
     @user = User.find_by_param(params[:id])
     @srp_session = session.delete(:handshake)
-    @server_auth = @srp_session.authenticate!(params[:client_auth].hex)
+    @srp_session.authenticate!(params[:client_auth].hex)
     session[:user_id] = @user.id
     User.current = @user #?
-    render :json => {:M2 => "%064x" % @server_auth}
+    render :json => @srp_session
   rescue WRONG_PASSWORD
     session[:handshake] = nil
     render :json => {:errors => {"password" => ["wrong password"]}}
author	Azul <azul@leap.se>	2012-10-05 16:47:19 +0200
committer	Azul <azul@leap.se>	2012-10-05 16:47:19 +0200
commit	c2d5a80b576ffc5f9ff0807c9a52fec8b4f34123 (patch)
tree	7eb8a55218ad4e2f385a84b026e12d78d40270cf /users/app
parent	76e4a13c3d2cc16c552d2205c8659be686f3718c (diff)