diff options
author | Azul <azul@leap.se> | 2013-08-07 18:09:20 +0200 |
---|---|---|
committer | Azul <azul@leap.se> | 2013-08-08 10:44:33 +0200 |
commit | a0b276e4b8ae86dec7deee898e85b65784d89933 (patch) | |
tree | ffd47d9ab38f2c17ae7d05d4c6cc084f68573b1b /users/lib/warden | |
parent | 8e2bff3fb077410fd7facc41e4a460b402e08045 (diff) |
close srp vulnerability and report error in webapp
Diffstat (limited to 'users/lib/warden')
-rw-r--r-- | users/lib/warden/strategies/secure_remote_password.rb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/users/lib/warden/strategies/secure_remote_password.rb b/users/lib/warden/strategies/secure_remote_password.rb index 2c681be..4688fcd 100644 --- a/users/lib/warden/strategies/secure_remote_password.rb +++ b/users/lib/warden/strategies/secure_remote_password.rb @@ -49,6 +49,8 @@ module Warden else fail! :base => 'invalid_user_pass' end + rescue SRP::InvalidEphemeral + fail!(:base => "invalid_ephemeral") end def json_response(object) |