ruby_srp.git/test, branch release-0.1.0 [ruby_srp] authenticate returns the user, to_json includes M2. bumped version to 0.1.3 2012-10-11T15:02:15+00:00 Azul azul@riseup.net 2012-10-11T15:02:15+00:00 04421b355eb93de2888f12801cc0ebe123414264 This way the controller can easily use @user = @session.authenticate; respond_with @sessoin; 
This way the controller can easily use @user = @session.authenticate; respond_with @sessoin;
bugfix - zero padded salts do not break login anymore 2012-10-05T14:34:07+00:00 Azul azul@riseup.net 2012-10-05T14:34:07+00:00 b35bf766a6bbd5857853ac25d27091a7cf566539 






made m and m2 calculation srp 6A compatible
2012-10-05T10:44:22+00:00

Azul
azul@riseup.net

2012-10-05T10:44:22+00:00

ce246cb722f7f61b3a1ba7223857627f1bed4f4c

Also added session_test that tests agains values calculated with py_srp





Also added session_test that tests agains values calculated with py_srp







using the SRP 6a algorithm for calculating M
2012-10-04T11:08:21+00:00

Azul
azul@riseup.net

2012-10-04T11:08:21+00:00

0c70bc88f14f9cc92a98a902a99b88a9b1f672e6












moved all server side auth stuff into session so i can remove the authentication module
2012-10-04T09:52:27+00:00

Azul
azul@riseup.net

2012-10-04T09:48:38+00:00

777254f7ba10a0dd8fbee433e6a631d96e9d76f0












more cleanup - no more duplicate password and username in Client
2012-10-04T08:47:19+00:00

Azul
azul@riseup.net

2012-10-04T08:47:19+00:00

66c3ed01eb012cae84193b4864c7c48eb77c2a8c

A client has a set of pwd and login and tries to auth with this.





A client has a set of pwd and login and tries to auth with this.







using BIG_PRIME_N and hashing the byte array - tests pass
2012-10-04T07:54:47+00:00

Azul
azul@riseup.net

2012-10-04T07:54:47+00:00

693b6d1e36828fa17915a9297595f65c739b611a

We still calculate M differently than in SRP 6a





We still calculate M differently than in SRP 6a







calculate verifiers and multiplier just like in py srp
2012-10-03T14:59:46+00:00

Azul
azul@riseup.net

2012-10-03T14:59:46+00:00

4f57d8010a90fe1221c351f695d15d29a9cdc37f

Some other parts are still missing. Main issue was using hashes of hex representation rather that hashes of byte arrays





Some other parts are still missing. Main issue was using hashes of hex representation rather that hashes of byte arrays







hand over the login on handshake like we normally would
2012-08-06T11:08:43+00:00

Azul
azul@leap.se

2012-08-06T11:07:11+00:00

56a95c99cdfd8d0cf501f92ea9156b20d2dc07c7

still missing the salt in this. auth should be more independent from registry to resemble the real process more closely





still missing the salt in this. auth should be more independent from registry to resemble the real process more closely







added authenticate! which raises SRP::WrongPassword if it fails, version 0.0.2
2012-08-06T10:41:06+00:00

Azul
azul@leap.se

2012-08-06T10:34:47+00:00

552574bfb0a0160935452b605bb262b5b52c4f67