|
| 1 | +// Copyright 2024 The Casdoor Authors. All Rights Reserved. |
| 2 | +// |
| 3 | +// Licensed under the Apache License, Version 2.0 (the "License"); |
| 4 | +// you may not use this file except in compliance with the License. |
| 5 | +// You may obtain a copy of the License at |
| 6 | +// |
| 7 | +// http://www.apache.org/licenses/LICENSE-2.0 |
| 8 | +// |
| 9 | +// Unless required by applicable law or agreed to in writing, software |
| 10 | +// distributed under the License is distributed on an "AS IS" BASIS, |
| 11 | +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 12 | +// See the License for the specific language governing permissions and |
| 13 | +// limitations under the License. |
| 14 | + |
| 15 | +package cred |
| 16 | + |
| 17 | +import ( |
| 18 | + "crypto/sha512" |
| 19 | + "encoding/hex" |
| 20 | +) |
| 21 | + |
| 22 | +type Sha512SaltCredManager struct{} |
| 23 | + |
| 24 | +func getSha512(data []byte) []byte { |
| 25 | + hash := sha512.Sum512(data) |
| 26 | + return hash[:] |
| 27 | +} |
| 28 | + |
| 29 | +func getSha512HexDigest(s string) string { |
| 30 | + b := getSha512([]byte(s)) |
| 31 | + res := hex.EncodeToString(b) |
| 32 | + return res |
| 33 | +} |
| 34 | + |
| 35 | +func NewSha512SaltCredManager() *Sha512SaltCredManager { |
| 36 | + cm := &Sha512SaltCredManager{} |
| 37 | + return cm |
| 38 | +} |
| 39 | + |
| 40 | +func (cm *Sha512SaltCredManager) GetHashedPassword(password string, userSalt string, organizationSalt string) string { |
| 41 | + res := getSha512HexDigest(password) |
| 42 | + if organizationSalt != "" { |
| 43 | + res = getSha512HexDigest(res + organizationSalt) |
| 44 | + } |
| 45 | + return res |
| 46 | +} |
| 47 | + |
| 48 | +func (cm *Sha512SaltCredManager) IsPasswordCorrect(plainPwd string, hashedPwd string, userSalt string, organizationSalt string) bool { |
| 49 | + return hashedPwd == cm.GetHashedPassword(plainPwd, userSalt, organizationSalt) |
| 50 | +} |
0 commit comments