diff options
author | ausiv4 <ausiv4@eb105b4a-77de-11de-a249-6bf219df57d5> | 2009-08-12 23:30:24 +0000 |
---|---|---|
committer | ausiv4 <ausiv4@eb105b4a-77de-11de-a249-6bf219df57d5> | 2009-08-12 23:30:24 +0000 |
commit | 24065d78f50b2fba32d63da58fa67407b22e6451 (patch) | |
tree | 299803318ef74ca224ebf0f612dcd8b401cb2374 /django/srpproject/urls.py | |
parent | 124ef39cb84dec12d21a36e98039e6a5042e7317 (diff) |
Rather than passing the necessary parameters to the SRP constructor, I've made them hidden fields in the form. This way a bookmarklet will be
able to read the fields, and authentication can be done without trusting the javascript sent by the server.
I also organized urls.py
Diffstat (limited to 'django/srpproject/urls.py')
-rw-r--r-- | django/srpproject/urls.py | 13 |
1 files changed, 9 insertions, 4 deletions
diff --git a/django/srpproject/urls.py b/django/srpproject/urls.py index 07f446f..43a609d 100644 --- a/django/srpproject/urls.py +++ b/django/srpproject/urls.py @@ -15,14 +15,19 @@ urlpatterns = patterns('', # Uncomment the next line to enable the admin: # (r'^admin/(.*)', admin.site.root), + + # Login and regiser pages. These are mainly for testing. + (r'^srp/register/$', views.register_page), + (r'^srp/login/$', views.login_page), + (r'^srp/register/salt/$', views.register_salt), (r'^srp/register/user/$', views.register_user), + + # (r'^srp/handshake/$', views.handshake), (r'^srp/authenticate/$', views.verify), - (r'^srp/login/$', views.login_page), - (r'^srp/register/$', views.register_page), + + # Only include these if you are upgrading an existing installation to SRP (r'^srp/upgrade/authenticate/$', views.upgrade_auth), (r'^srp/upgrade/verifier/$', views.upgrade_add_verifier), - (r'^srp/aes/$', views.test_aes), - (r'^srp/aes/post/$', views.doaes), ) |