Sha256: 08daa8e507cafadd2b85eb1f30c7c2ab50c455d9c128d1cf5cc583a7cb93eecd
Contents?: true
Size: 1.84 KB
Versions: 1
Compression:
Stored size: 1.84 KB
Contents
module Clearance
module PasswordStrategies
module BCryptMigrationFromSHA1
DEPRECATION_MESSAGE = "[DEPRECATION] The BCryptMigrationFromSha1 " \
"password strategy has been deprecated and will be removed from " \
"Clearance 2.0. BCrypt is the only officially supported strategy, " \
"though you are free to provide your own. To continue using this " \
"strategy, add clearance-deprecated_password_strategies to your " \
"Gemfile."
class BCryptUser
include Clearance::PasswordStrategies::BCrypt
def initialize(user)
@user = user
end
delegate :encrypted_password, :encrypted_password=, to: :@user
end
class SHA1User
include Clearance::PasswordStrategies::SHA1
def initialize(user)
@user = user
end
delegate :salt, :salt=, :encrypted_password, :encrypted_password=, to: :@user
end
def authenticated?(password)
warn "#{Kernel.caller.first}: #{DEPRECATION_MESSAGE}"
authenticated_with_sha1?(password) || authenticated_with_bcrypt?(password)
end
def password=(new_password)
warn "#{Kernel.caller.first}: #{DEPRECATION_MESSAGE}"
@password = new_password
BCryptUser.new(self).password = new_password
end
private
def authenticated_with_bcrypt?(password)
begin
BCryptUser.new(self).authenticated? password
rescue ::BCrypt::Errors::InvalidHash
false
end
end
def authenticated_with_sha1?(password)
if sha1_password?
if SHA1User.new(self).authenticated? password
self.password = password
self.save
true
end
end
end
def sha1_password?
self.encrypted_password =~ /^[a-f0-9]{40}$/
end
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| clearance-1.10.1 | lib/clearance/password_strategies/bcrypt_migration_from_sha1.rb |