only check password if there is a store_hash

2013-07-08 16:27:43 -07:00 · 2013-07-08 16:27:43 -07:00 · b3c4cbd5c1
commit b3c4cbd5c1
parent 5622cc44ed
1 changed files with 4 additions and 1 deletions
--- a/mediagoblin/plugins/basic_auth/init.py
+++ b/mediagoblin/plugins/basic_auth/init.py
@ -59,7 +59,10 @@ def gen_password_hash(raw_pass, extra_salt=None):


 def check_password(raw_pass, stored_hash, extra_salt=None):
-    return auth_tools.bcrypt_check_password(raw_pass, stored_hash, extra_salt)
+    if stored_hash:
+        return auth_tools.bcrypt_check_password(raw_pass,
+                                                stored_hash, extra_salt)
+    return None


 def auth():