[#924] Implements update recovery code through bitmask

with @anikarni

1 files changed, 8 insertions, 3 deletions

diff --git a/service/pixelated/authentication.py b/service/pixelated/authentication.py
index 983086ce..27d6035a 100644
--- a/service/pixelated/authentication.py
+++ b/service/pixelated/authentication.py
@@ -30,6 +30,7 @@ class Authenticator(object):
     def __init__(self, leap_provider):
         self._leap_provider = leap_provider
         self.domain = leap_provider.server_name
+        self.bonafide_sesssion = None
 
     @inlineCallbacks
     def authenticate(self, username, password):
@@ -49,9 +50,13 @@ class Authenticator(object):
     def _bonafide_auth(self, user, password):
         srp_provider = Api(self._leap_provider.api_uri)
         credentials = Credentials(user, password)
-        srp_auth = Session(credentials, srp_provider, self._leap_provider.local_ca_crt)
-        yield srp_auth.authenticate()
-        returnValue(Authentication(user, srp_auth.token, srp_auth.uuid, 'session_id', {'is_admin': False}))
+        self.bonafide_sesssion = Session(credentials, srp_provider, self._leap_provider.local_ca_crt)
+        yield self.bonafide_sesssion.authenticate()
+        returnValue(Authentication(user,
+                                   self.bonafide_sesssion.token,
+                                   self.bonafide_sesssion.uuid,
+                                   'session_id',
+                                   {'is_admin': False}))
 
     def clean_username(self, username):
         if '@' not in username: