Ruby BCrypt hash comparison not working -

-

i new comer ruby, apologies if question has been answered. have read other questions , still cannot figure out doing wrong.

i creating hashed passwords storing in db this:

new_user.password = bcrypt::password.create(unhashed_password) # write user database new_user.store_user

i retrieve user db checking against inputed user name, , check password this:

# user database def self.get_user(check_user_name) db = user.open_db user = user.new user_arr = db.execute("select * user_data user_name = ?", check_user_name).first db.close # if user exists check password if user_arr.size != 0   print "enter password  : "   # password user   user_input_password_attempt = gets.chomp end # parse db user user class if password guess correct stored_password = bcrypt::password.new(user_arr[2]) if user_input_password_attempt == stored_password   @@users_logged_in += 1   user.user_id = user_arr[0]   user.user_name = user_arr[1]   user.password = user_arr[2]   return user end :no_user

end

my problem var stored_password returning hash , != user_input_password_attempt have read ruby-doc , googled extensively

when use == calling == method defined on object on left hand side, passing right hand side argument:

a == b

is equivalent to

a.==(b)

depending on object call == method might receive different result. in other words: 

a == b

might or might not return different result than

b ==

while think nonsense , equality operators should transitive, symetric , reflexive bcrypt people have decided implement in way:

def ==(secret)   super(bcrypt::engine.hash_secret(secret, @salt)) end

(taken http://bcrypt-ruby.rubyforge.org/classes/bcrypt/password.html#m000009)

this means have write:

stored_password = bcrypt::password.new(user_arr[2]) if stored_password == user_input_password_attempt   ... end

in order call == method on password instance.


Comments

Post a Comment

Popular posts from this blog

javascript - How to get current YouTube IDs via iMacros? -

-
i want viewed youtube video id , save csv via imacros, gets nothing. here js code: var videoid; videoid ="code:"; videoid +="url goto=https://www.youtube.com/watch?v=dbnywxdz_pa"+"\n"; videoid +="add !extract {{!urlcurrent}}"+"\n"; videoid +="set !var1 eval(\"var s=\"{{!urlcurrent}}\"; s.match((?<=watch\\?v=|/videos/|embed\\/)[^#\\&\\?]*);s[0]; \")"+"\n"; videoid +="add !extract {{!var1}}"+"\n"; videoid +="saveas type=extract folder=* file=url.csv"+"\n"; try this: var videoid = "url goto=https://www.youtube.com/watch?v=dbnywxdz_pa" + "\n"; videoid += "set !extract {{!urlcurrent}}" + "\n"; videoid += 'set !extract eval("\'{{!extract}}\'.match(/v=(.{11})/)[1];")' + "\n"; videoid += "saveas type=extract folder=* file=url.csv" + "\n"; iimplay
Read more

c# - Maintaining a program folder in program files out of date? -

-
for program i'm writing in vs c# wpf need store user related information on user's computer. far knew has been done creating folder in c:\program files , adding whatever program related info folder in subfolders or whatever. after doing browsing came across lot of people saying method out of date because access may denied create folder there, works administrative accounts, etc.. 1 site suggested saving c:\users\username\appdata\roaming or c:\users\username\appdata\local. question best , date method saving program data users computer? also take @ msdn article . it uwp apps have general idea put if developing wpf app. you may need these folders: environment.specialfolder.applicationdata environment.specialfolder.localapplicationdata environment.specialfolder.commonapplicationdata
Read more

emulation - Android map show my location didn't work -

-
i have been struggle current location in google map, tried official map demo, not working also. shows getmylocation button on upper right, didn't show blue dot on map current location. here code , i'm using emulator target api 23, guess may emulator's problem since code download directly github. advice appreciated. [screenshot][1] package com.example.mapdemo; import com.google.android.gms.maps.googlemap; import com.google.android.gms.maps.googlemap.onmylocationbuttonclicklistener; import com.google.android.gms.maps.onmapreadycallback; import com.google.android.gms.maps.supportmapfragment; import android.manifest; import android.content.pm.packagemanager; import android.os.bundle; import android.support.annotation.nonnull; import android.support.v4.app.activitycompat; import android.support.v4.content.contextcompat; import android.support.v7.app.appcompatactivity; import android.widget.toast; /** * demo
Read more