max/GoWeb
1
1
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases 7 Wiki Activity

Fix password authentication

Browse Source
This commit is contained in:
Maximilian 2022-11-01 17:15:19 -05:00
parent 619469059c
commit d68badc41c
1 changed files with 1 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
database/models/user.go
View File

@ -2,10 +2,8 @@ package models
import ( import (
"GoWeb/app" "GoWeb/app"
"bytes"
"crypto/rand" "crypto/rand"
"database/sql" "database/sql"
"encoding/gob"
"encoding/hex" "encoding/hex"
"log" "log"
"math" "math"
@ -89,18 +87,8 @@ func AuthenticateUser(app *app.App, w http.ResponseWriter, username string, pass
return "", err return "", err
} }
// Convert passed password to []byte
passwordBuffer := &bytes.Buffer{}
err = gob.NewEncoder(passwordBuffer).Encode(password)
if err != nil {
log.Println("Unable to convert passed password to []byte")
log.Println(err)
return "", err
}
passwordByteSlice := passwordBuffer.Bytes()
// Validate password // Validate password
err = bcrypt.CompareHashAndPassword(hashedPassword, passwordByteSlice) err = bcrypt.CompareHashAndPassword(hashedPassword, []byte(password))
if err != nil { // Failed to validate password, doesn't match if err != nil { // Failed to validate password, doesn't match
log.Println("Authentication error (incorrect password) for user:" + username) log.Println("Authentication error (incorrect password) for user:" + username)
log.Println(err) log.Println(err)