From d242d47e5cf1274225091e843e065366a3620c14 Mon Sep 17 00:00:00 2001
From: BlueWall
Date: Fri, 2 Mar 2012 15:05:06 -0500
Subject: OpenID auth needs hashing before authenticating
---
OpenSim/Server/Handlers/Authentication/OpenIdServerHandler.cs | 2 +-
OpenSim/Services/AuthenticationService/PasswordAuthenticationService.cs | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/OpenSim/Server/Handlers/Authentication/OpenIdServerHandler.cs b/OpenSim/Server/Handlers/Authentication/OpenIdServerHandler.cs
index 440b898..dfed761 100644
--- a/OpenSim/Server/Handlers/Authentication/OpenIdServerHandler.cs
+++ b/OpenSim/Server/Handlers/Authentication/OpenIdServerHandler.cs
@@ -248,7 +248,7 @@ For more information, see <a href='http://openid.net/'>http://openid.net/</a>.
if (passwordValues != null && passwordValues.Length == 1)
{
if (account != null &&
- (m_authenticationService.Authenticate(account.PrincipalID, passwordValues[0], 30) != string.Empty))
+ (m_authenticationService.Authenticate(account.PrincipalID,Util.Md5Hash(passwordValues[0]), 30) != string.Empty))
authRequest.IsAuthenticated = true;
else
authRequest.IsAuthenticated = false;
diff --git a/OpenSim/Services/AuthenticationService/PasswordAuthenticationService.cs b/OpenSim/Services/AuthenticationService/PasswordAuthenticationService.cs
index 48eb3f8..5f1bde1 100644
--- a/OpenSim/Services/AuthenticationService/PasswordAuthenticationService.cs
+++ b/OpenSim/Services/AuthenticationService/PasswordAuthenticationService.cs
@@ -80,7 +80,7 @@ namespace OpenSim.Services.AuthenticationService
{
string hashed = Util.Md5Hash(password + ":" + data.Data["passwordSalt"].ToString());
- //m_log.DebugFormat("[PASS AUTH]: got {0}; hashed = {1}; stored = {2}", password, hashed, data.Data["passwordHash"].ToString());
+ m_log.DebugFormat("[PASS AUTH]: got {0}; hashed = {1}; stored = {2}", password, hashed, data.Data["passwordHash"].ToString());
if (data.Data["passwordHash"].ToString() == hashed)
{
--
cgit v1.1