diff options
| author | ausiv4 <ausiv4@eb105b4a-77de-11de-a249-6bf219df57d5> | 2009-08-12 17:01:23 +0000 |
|---|---|---|
| committer | ausiv4 <ausiv4@eb105b4a-77de-11de-a249-6bf219df57d5> | 2009-08-12 17:01:23 +0000 |
| commit | 124ef39cb84dec12d21a36e98039e6a5042e7317 (patch) | |
| tree | 91a0b28d2bf6b3b952d8b575a752d45193ca2d8b /django/srpproject/urls.py | |
| parent | 900dc01238f0c0f6830d487d93f9176e711104fe (diff) | |
When upgrading the user from a non-srp account to an SRP account, the client must send the server the password. I wasn't happy about doing this
in plaintext, so I've incorporated slowAES on both the client and the server to encrypt the password before it is sent, using the key generated
in the first SRP transaction.
Diffstat (limited to 'django/srpproject/urls.py')
| -rw-r--r-- | django/srpproject/urls.py | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/django/srpproject/urls.py b/django/srpproject/urls.py index 550676e..07f446f 100644 --- a/django/srpproject/urls.py +++ b/django/srpproject/urls.py @@ -23,4 +23,6 @@ urlpatterns = patterns('', (r'^srp/register/$', views.register_page), (r'^srp/upgrade/authenticate/$', views.upgrade_auth), (r'^srp/upgrade/verifier/$', views.upgrade_add_verifier), + (r'^srp/aes/$', views.test_aes), + (r'^srp/aes/post/$', views.doaes), ) |