40 lines
1.0 KiB
Python
40 lines
1.0 KiB
Python
|
#import crypt
|
||
|
|
#import base64
|
||
|
|
import bcrypt
|
||
|
|
|
||
|
|
def checkOldPassword(password, salt, rightPassword):
|
||
|
|
"""
|
||
|
|
Check if `password` + `salt` corresponds to `rightPassword`
|
||
|
|
NOT USED ANYMORE! RETURNS ALWAYS FALSE!
|
||
|
|
|
||
|
|
:param password: input password
|
||
|
|
:param salt: password's salt
|
||
|
|
:param rightPassword: tight password
|
||
|
|
:return: True if the password is correct, otherwise False.
|
||
|
|
"""
|
||
|
|
return False
|
||
|
|
#return (rightPassword == crypt.crypt(password, "$2y$"+str(base64.b64decode(salt))))
|
||
|
|
|
||
|
|
def checkNewPassword(password, dbPassword):
|
||
|
|
"""
|
||
|
|
Check if a password (version 2) is right.
|
||
|
|
|
||
|
|
:param password: input password
|
||
|
|
:param dbPassword: the password in the database
|
||
|
|
:return: True if the password is correct, otherwise False.
|
||
|
|
"""
|
||
|
|
if len(password) != 32:
|
||
|
|
return False
|
||
|
|
password = password.encode("utf-8")
|
||
|
|
dbPassword = dbPassword.encode("utf-8")
|
||
|
|
return bcrypt.checkpw(password, dbPassword)
|
||
|
|
|
||
|
|
def genBcrypt(password):
|
||
|
|
"""
|
||
|
|
Bcrypts a password.
|
||
|
|
|
||
|
|
:param password: the password to hash
|
||
|
|
:return: bytestring
|
||
|
|
"""
|
||
|
|
return bcrypt.hashpw(password.encode("utf8"), bcrypt.gensalt(10, b'2a'))
|