Class: Authlogic::CryptoProviders::Sha1

Inherits:
Object
  • Object
show all
Defined in:
lib/authlogic/crypto_providers/sha1.rb,
lib/authlogic/crypto_providers/sha1/v2.rb

Overview

A poor choice. There are known attacks against this algorithm.

Defined Under Namespace

Classes: V2

Class Attribute Summary collapse

Class Method Summary collapse

Class Attribute Details

.join_tokenObject



13
14
15
# File 'lib/authlogic/crypto_providers/sha1.rb', line 13

def join_token
  @join_token ||= "--"
end

.stretchesObject

The number of times to loop through the encryption.



19
20
21
# File 'lib/authlogic/crypto_providers/sha1.rb', line 19

def stretches
  @stretches ||= 10
end

Class Method Details

.encrypt(*tokens) ⇒ Object

Turns your raw password into a Sha1 hash.



25
26
27
28
29
30
31
32
# File 'lib/authlogic/crypto_providers/sha1.rb', line 25

def encrypt(*tokens)
  tokens = tokens.flatten
  digest = tokens.shift
  stretches.times do
    digest = Digest::SHA1.hexdigest([digest, *tokens].join(join_token))
  end
  digest
end

.matches?(crypted, *tokens) ⇒ Boolean

Does the crypted password match the tokens? Uses the same tokens that were used to encrypt.

Returns:

  • (Boolean)


36
37
38
# File 'lib/authlogic/crypto_providers/sha1.rb', line 36

def matches?(crypted, *tokens)
  encrypt(*tokens) == crypted
end