summaryrefslogtreecommitdiff
path: root/bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt
diff options
context:
space:
mode:
Diffstat (limited to 'bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt')
-rw-r--r--bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt5
1 files changed, 3 insertions, 2 deletions
diff --git a/bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt b/bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt
index c70627e7..7e8f4aac 100644
--- a/bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt
+++ b/bank/src/main/kotlin/tech/libeufin/bank/auth/auth.kt
@@ -28,6 +28,7 @@ import io.ktor.util.pipeline.*
import tech.libeufin.bank.*
import tech.libeufin.bank.db.Database
import tech.libeufin.common.*
+import tech.libeufin.common.crypto.*
import java.time.Instant
/** Used to store if the currently authenticated user is admin */
@@ -134,13 +135,13 @@ private suspend fun ApplicationCall.authenticateBankRequest(db: Database, requir
* Returns the authenticated customer login
*/
private suspend fun doBasicAuth(db: Database, encoded: String): String {
- val decoded = String(base64ToBytes(encoded), Charsets.UTF_8)
+ val decoded = String(encoded.decodeBase64(), Charsets.UTF_8)
val (login, plainPassword) = decoded.splitOnce(":") ?: throw badRequest(
"Malformed Basic auth credentials found in the Authorization header",
TalerErrorCode.GENERIC_HTTP_HEADERS_MALFORMED
)
val hash = db.account.passwordHash(login) ?: throw unauthorized("Unknown account")
- if (!CryptoUtil.checkpw(plainPassword, hash)) throw unauthorized("Bad password")
+ if (!PwCrypto.checkpw(plainPassword, hash)) throw unauthorized("Bad password")
return login
}
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-06 22:21:32 +0000