From 900dc01238f0c0f6830d487d93f9176e711104fe Mon Sep 17 00:00:00 2001
From: ausiv4 <ausiv4@eb105b4a-77de-11de-a249-6bf219df57d5>
Date: Sun, 9 Aug 2009 00:57:03 +0000
Subject: Significant cleanup to srp.js.

---
 upgrade-notes.txt | 19 -------------------
 1 file changed, 19 deletions(-)
 delete mode 100644 upgrade-notes.txt

(limited to 'upgrade-notes.txt')

diff --git a/upgrade-notes.txt b/upgrade-notes.txt
deleted file mode 100644
index 99fe411..0000000
--- a/upgrade-notes.txt
+++ /dev/null
@@ -1,19 +0,0 @@
-###
-### Upgrade
-###
-
-# We would like people to be able to upgrade an existing system to use SRP, without losing their user database.
-# We can detect existing users who cannot authenticate with SRP because they will appear in the django.auth
-# table without appearing in the srp table. Ultimately, we would like to do this without the user sending his plaintext password.
-
-# The server sends the client its salt for the database password, along with the hash algorithm that was used to store it.
-# The client hashes the salt and password, and gets P = H(s,p). The client proceeds with SRP treating P as if it were
-# its secret password. The server can do the same thing, and confirm the user's password.
-
-def ugprade(request):
-    user = django.contrib.auth.models.User.objects.get(username=request.POST["I"])
-    shadowpass = user.password.split("$")
-    srpsalt = generate_salt()
-    algorithm = shadowpass[0]
-    shadowsalt = shadowpass[1]
-    passhash = shadowpass[2]
-- 
cgit v1.2.3