yagich/porom
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: yagich:ddad153875f7fce9613791b4e884694b152932af
Branches Tags
yagich:main
yagich:with-docker
..
compare: yagich:d4ab245297a0e60b330aa12ec04922a9ad8fb0cd
Branches Tags
yagich:main
yagich:with-docker

No commits in common. "ddad153875f7fce9613791b4e884694b152932af" and "d4ab245297a0e60b330aa12ec04922a9ad8fb0cd" have entirely different histories.
ddad153875 ... d4ab245297

6 changed files with 9 additions and 25 deletions
Show Stats Expand all files Collapse all files

6
apps/users.lua
View File

@ -5,7 +5,7 @@ local constants = require("constants")
local util = require("util") local util = require("util")
local auth = require("lib.auth") local bcrypt = require("bcrypt")
local rand = require("openssl.rand") local rand = require("openssl.rand")
local models = require("models") local models = require("models")
@ -14,7 +14,7 @@ local Sessions = models.Sessions
local Avatars = models.Avatars local Avatars = models.Avatars
local function authenticate_user(user, password) local function authenticate_user(user, password)
return auth.verify(password, user.password_hash) return bcrypt.verify(password, user.password_hash)
end end
local function create_session_key() local function create_session_key()
@ -321,7 +321,7 @@ app:post("user_signup", "/signup", function(self)
local new_user = Users:create({ local new_user = Users:create({
username = username, username = username,
password_hash = auth.digest(password), password_hash = bcrypt.digest(password, constants.BCRYPT_ROUNDS),
permission = constants.PermissionLevel.GUEST, permission = constants.PermissionLevel.GUEST,
}) })

4
create_default_accounts.lua
View File

@ -1,4 +1,4 @@
local auth = require("lib.auth") local bcrypt = require("bcrypt")
local models = require("models") local models = require("models")
local constants = require("constants") local constants = require("constants")
@ -29,7 +29,7 @@ local function create_admin()
password = password .. alphabet:sub(randi, randi) password = password .. alphabet:sub(randi, randi)
end end
local hash = auth.digest(password) local hash = bcrypt.digest(password, constants.BCRYPT_ROUNDS)
models.Users:create({ models.Users:create({
username = username, username = username,

16
lib/auth.lua
View File

@ -1,16 +0,0 @@
local auth = {}
local ls = require "luasodium"
function auth.digest(password)
return ls.crypto_pwhash_str(
password,
ls.crypto_pwhash_OPSLIMIT_INTERACTIVE,
ls.crypto_pwhash_MEMLIMIT_INTERACTIVE)
end
function auth.verify(password, hash)
return ls.crypto_pwhash_str_verify(hash, password)
end
return auth

2
porom-dev-1.rockspec
View File

@ -16,7 +16,7 @@ dependencies = {
"lapis == 1.16.0", "lapis == 1.16.0",
"lsqlite3", "lsqlite3",
"magick", "magick",
"luasodium", "bcrypt",
"luaossl", "luaossl",
} }

4
start.sh
View File

@ -7,9 +7,9 @@ start() {
first_launch() { first_launch() {
echo "Setting up for the first time" echo "Setting up for the first time"
touch ".first_launch.$LAPIS_ENVIRONMENT" touch ".first_launch.$LAPIS_ENVIRONMENT"
luajit schema.lua lua5.1 schema.lua
lapis migrate lapis migrate
luajit create_default_accounts.lua lua5.1 create_default_accounts.lua
} }
if [[ $# -ne 1 ]]; then if [[ $# -ne 1 ]]; then

2
views/user/user.etlua
View File

@ -1,5 +1,5 @@
<% if infobox then %> <% if infobox then %>
<% render("views.common.infobox", infobox) %> <% render("views.common.infobox", pop_infobox) %>
<% end %> <% end %>
<div class="darkbg"> <div class="darkbg">
<h1 class="thread-title">Latest posts by <i><%= user.username %></i></h1> <h1 class="thread-title">Latest posts by <i><%= user.username %></i></h1>