Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-09-17 | Allow extra signup params from account | kaeff | |
For the feature/invite-codes in leap_web, we need to be able to pass an extra parameter (the invite code) from the signup form to the server. This approach allows the consumer of SRP to specify a custom implementation of Account that returns arbitrary `loginParams`, and Session will pass them on so that they become part of the XHR. - Split session.signup into signup and update to restrict extra params to signup only | |||
2013-07-12 | also zeroprefix the salt if needed | Azul | |
Now what else can you possibly zeroprefix? This should be it - shouldn't it? | |||
2013-07-12 | prefix incoming B too | Azul | |
2013-07-04 | always use the API-only controller for all requests. | elijah | |
2013-06-24 | refactor: separate account from session | Azul | |
2013-06-24 | refactor: rename constants to calculate and clean up hash usage | Azul | |
2013-06-24 | refactor: separate calculations from session | Azul | |
2013-06-24 | fix bug wrt zero padding of hashes | Azul | |
2013-03-20 | use a proper random a for the handshake | Azul | |
2012-11-22 | don't cache password and login | Azul | |
2012-11-20 | make sure we get the current password and login | Azul | |
2012-11-19 | further cleanup | Azul | |
2012-11-19 | removed the SRP class - using just a plain srp object now | Azul | |
2012-10-16 | use M2 as the key for the server auth | Azul | |
2012-10-16 | not caching x,V,salt to avoid conflicts | Azul | |
2012-10-16 | added unit tests for session calculations | Azul | |
2012-10-14 | calculating the right M and M2! | Azul | |
still missing some error handling, this in Django specs and the right http verbs | |||
2012-10-12 | got signup to work in accordance with py srp | Azul | |
2012-08-21 | moved srp-js files from lib to src | Azul | |