server-side hashing now uses a salt

author: troido <troido@protonmail.com> 2020-04-24 11:08:42 +0200
committer: troido <troido@protonmail.com> 2020-04-24 11:08:42 +0200
commit: 6c5b15758fbceef7987b40ee50a71ddc9624372d (patch)
tree: f62cbe2fafff6209118a0ca59b33d133d2d49c0e /src
parent: 71744e0d16a23acde3e743c94838dbae9af057a9 (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/src/auth.rs b/src/auth.rs
index af74b08..9541a2e 100644
--- a/src/auth.rs
+++ b/src/auth.rs
@@ -6,8 +6,8 @@ use std::io::ErrorKind;
 
 use serde_json;
 use serde::{Serialize, Deserialize};
-use sha2::{Sha256, Digest};
-use base64::decode;
+use ring::digest;
+use base64;
 
 use crate::{
 	PlayerId,
@@ -31,13 +31,15 @@ pub enum UserRole {
 pub struct User {
 	pub name: String,
 	pub pass_token: String,
+	pub salt: String,
 	pub role: UserRole
 }
 
 impl User {
 	pub fn validate_token(&self, token: &str) -> bool {
-		if let (Ok(saved), Ok(given)) = (decode(&self.pass_token), decode(token)) {
-			let hashed: Vec<u8> = Sha256::digest(&given)[..].to_vec();
+		if let (Ok(saved), Ok(mut given), Ok(mut salt)) = (base64::decode(&self.pass_token), base64::decode(token), base64::decode(&self.salt)) {
+			given.append(&mut salt);
+			let hashed: Vec<u8> = digest::digest(&digest::SHA256, &given).as_ref().to_vec();
 			hashed == saved
 		} else {
 			false
author	troido <troido@protonmail.com>	2020-04-24 11:08:42 +0200
committer	troido <troido@protonmail.com>	2020-04-24 11:08:42 +0200
commit	6c5b15758fbceef7987b40ee50a71ddc9624372d (patch)
tree	f62cbe2fafff6209118a0ca59b33d133d2d49c0e /src
parent	71744e0d16a23acde3e743c94838dbae9af057a9 (diff)