limit password length to 10000 characters
that should be sufficient…
This commit is contained in:
Daniel Friesel
parent
e2e33de7e1
commit
13b4572a2f
4 changed files with 6 additions and 6 deletions
|
|
@ -36,7 +36,7 @@ use XML::LibXML;
|
||||||
sub check_password {
|
sub check_password {
|
||||||
my ( $password, $hash ) = @_;
|
my ( $password, $hash ) = @_;
|
||||||
|
|
||||||
if ( bcrypt( $password, $hash ) eq $hash ) {
|
if ( bcrypt( substr( $password, 0, 10000 ), $hash ) eq $hash ) {
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
return 0;
|
return 0;
|
||||||
|
|
|
||||||
|
|
@ -13,7 +13,7 @@ sub hash_password {
|
||||||
my @salt_bytes = map { int( rand(255) ) + 1 } ( 1 .. 16 );
|
my @salt_bytes = map { int( rand(255) ) + 1 } ( 1 .. 16 );
|
||||||
my $salt = en_base64( pack( 'C[16]', @salt_bytes ) );
|
my $salt = en_base64( pack( 'C[16]', @salt_bytes ) );
|
||||||
|
|
||||||
return bcrypt( $password, '$2a$12$' . $salt );
|
return bcrypt( substr( $password, 0, 10000 ), '$2a$12$' . $salt );
|
||||||
}
|
}
|
||||||
|
|
||||||
sub make_token {
|
sub make_token {
|
||||||
|
|
|
||||||
|
|
@ -15,12 +15,12 @@
|
||||||
<div class="row">
|
<div class="row">
|
||||||
<div class="input-field col l6 m12 s12">
|
<div class="input-field col l6 m12 s12">
|
||||||
<i class="material-icons prefix">lock</i>
|
<i class="material-icons prefix">lock</i>
|
||||||
%= password_field 'newpw', id => 'password', class => 'validate', required => undef, minlength => 8, autocomplete => 'new-password'
|
%= password_field 'newpw', id => 'password', class => 'validate', required => undef, minlength => 8, maxlength => 10000, autocomplete => 'new-password'
|
||||||
<label for="password">Neues Passwort</label>
|
<label for="password">Neues Passwort</label>
|
||||||
</div>
|
</div>
|
||||||
<div class="input-field col l6 m12 s12">
|
<div class="input-field col l6 m12 s12">
|
||||||
<i class="material-icons prefix">lock</i>
|
<i class="material-icons prefix">lock</i>
|
||||||
%= password_field 'newpw2', id => 'password2', class => 'validate', required => undef, minlength => 8, autocomplete => 'new-password'
|
%= password_field 'newpw2', id => 'password2', class => 'validate', required => undef, minlength => 8, maxlength => 10000, autocomplete => 'new-password'
|
||||||
<label for="password2">Passwort wiederholen</label>
|
<label for="password2">Passwort wiederholen</label>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
|
|
|
||||||
|
|
@ -17,12 +17,12 @@
|
||||||
</div>
|
</div>
|
||||||
<div class="input-field col l6 m12 s12">
|
<div class="input-field col l6 m12 s12">
|
||||||
<i class="material-icons prefix">lock</i>
|
<i class="material-icons prefix">lock</i>
|
||||||
%= password_field 'password', id => 'password', class => 'validate', required => undef, minlength => 8, autocomplete => 'new-password'
|
%= password_field 'password', id => 'password', class => 'validate', required => undef, minlength => 8, maxlength => 10000, autocomplete => 'new-password'
|
||||||
<label for="password">Passwort</label>
|
<label for="password">Passwort</label>
|
||||||
</div>
|
</div>
|
||||||
<div class="input-field col l6 m12 s12">
|
<div class="input-field col l6 m12 s12">
|
||||||
<i class="material-icons prefix">lock</i>
|
<i class="material-icons prefix">lock</i>
|
||||||
%= password_field 'password2', id => 'password2', class => 'validate', required => undef, minlength => 8, autocomplete => 'new-password'
|
%= password_field 'password2', id => 'password2', class => 'validate', required => undef, minlength => 8, maxlength => 10000, autocomplete => 'new-password'
|
||||||
<label for="password2">Passwort wiederholen</label>
|
<label for="password2">Passwort wiederholen</label>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue