blob: 81104f43e65830e413833e443a005f10754b43ed (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
class User
include SRP::Authentication
def self.current
@current
end
def self.current=(user)
@current = user
end
attr_accessor :login
attr_accessor :salt
attr_accessor :verifier
attr_accessor :active
attr_accessor :srp
def initialize(login)
self.login = login
self.salt = "5d3055e0acd3ddcfc15".hex
# OpenSSL::Random.random_bytes(10).unpack("H*")[0]
self.active = false
User.current = self
end
def handshake(params)
bb, u = initialize_auth(params.delete('A').hex)
return {:s => self.salt.to_s(16), :B => bb.to_s(16)}
end
def validate(params)
if m2 = authenticate(params.delete('M').hex)
self.active = true
return {:M => m2.to_s(16)}
else
self.active = false
return {:error => "Access Denied"}
end
end
end
|