heckyel/mediagoblin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added a fake_login_attempt utility.

Browse Source
This commit is contained in:
Christopher Allan Webber 2011-04-03 15:31:16 -05:00
parent f5def6fe23
commit c15c9843b4
1 changed files with 18 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
mediagoblin/auth/lib.py
View File

@ -16,7 +16,7 @@
import os import os
import bcrypt import random
def bcrypt_check_password(raw_pass, stored_hash, extra_salt=None): def bcrypt_check_password(raw_pass, stored_hash, extra_salt=None):
@ -64,3 +64,20 @@ def bcrypt_gen_password_hash(raw_pass, extra_salt=None):
raw_pass = u"%s:%s" % (extra_salt, raw_pass) raw_pass = u"%s:%s" % (extra_salt, raw_pass)
return unicode(bcrypt.hashpw(raw_pass, bcrypt.gensalt())) return unicode(bcrypt.hashpw(raw_pass, bcrypt.gensalt()))
def fake_login_attempt():
"""
Pretend we're trying to login.
Nothing actually happens here, we're just trying to take up some
time.
"""
rand_salt = bcrypt.gensalt(5)
hashed_pass = bcrypt.hashpw(str(random.random()), rand_salt)
randplus_stored_hash = bcrypt.hashpw(str(random.random()), rand_salt)
randplus_hashed_pass = bcrypt.hashpw(hashed_pass, rand_salt)
randplus_stored_hash == randplus_hashed_pass