From 9c5811c6b760415372c6cc67a9d34680c990cdd8 Mon Sep 17 00:00:00 2001
From: Bruno Wagner <bwagner@riseup.net>
Date: Fri, 19 Aug 2016 17:13:58 -0300
Subject: Removed auth from leap session #759

Authentication is now consistently done before
creating the leap session, so I removed the
auth attempt from inside the leap session
factory
---
 service/pixelated/bitmask_libraries/session.py | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

(limited to 'service/pixelated/bitmask_libraries')

diff --git a/service/pixelated/bitmask_libraries/session.py b/service/pixelated/bitmask_libraries/session.py
index e410119e..72ad8520 100644
--- a/service/pixelated/bitmask_libraries/session.py
+++ b/service/pixelated/bitmask_libraries/session.py
@@ -205,7 +205,7 @@ class LeapSessionFactory(object):
         self._provider = provider
         self._config = provider.config
 
-    def create(self, username, password, auth=None):
+    def create(self, username, password, auth):
         key = SessionCache.session_key(self._provider, username)
         session = SessionCache.lookup_session(key)
         if not session:
@@ -214,12 +214,7 @@ class LeapSessionFactory(object):
 
         return session
 
-    def _auth_leap(self, username, password):
-        srp_auth = SRPAuth(self._provider.api_uri, self._provider.local_ca_crt)
-        return srp_auth.authenticate(username, password)
-
-    def _create_new_session(self, username, password, auth=None):
-        auth = auth or self._auth_leap(username, password)
+    def _create_new_session(self, username, password, auth):
         account_email = self._provider.address_for(username)
 
         self._create_database_dir(auth.uuid)
-- 
cgit v1.2.3