summaryrefslogtreecommitdiff
path: root/users/lib/warden
diff options
context:
space:
mode:
authorAzul <azul@leap.se>2013-08-07 18:09:20 +0200
committerAzul <azul@leap.se>2013-08-08 10:44:33 +0200
commita0b276e4b8ae86dec7deee898e85b65784d89933 (patch)
treeffd47d9ab38f2c17ae7d05d4c6cc084f68573b1b /users/lib/warden
parent8e2bff3fb077410fd7facc41e4a460b402e08045 (diff)
close srp vulnerability and report error in webapp
Diffstat (limited to 'users/lib/warden')
-rw-r--r--users/lib/warden/strategies/secure_remote_password.rb2
1 files changed, 2 insertions, 0 deletions
diff --git a/users/lib/warden/strategies/secure_remote_password.rb b/users/lib/warden/strategies/secure_remote_password.rb
index 2c681be..4688fcd 100644
--- a/users/lib/warden/strategies/secure_remote_password.rb
+++ b/users/lib/warden/strategies/secure_remote_password.rb
@@ -49,6 +49,8 @@ module Warden
else
fail! :base => 'invalid_user_pass'
end
+ rescue SRP::InvalidEphemeral
+ fail!(:base => "invalid_ephemeral")
end
def json_response(object)