[dancer-users] Dancer2::Plugin::Auth::Extensible with DB

Clive Eisen clive at hildebrand.co.uk
Thu Nov 23 16:05:29 GMT 2017 

And solved

It’s more of a documentation issue.

The default encryption is now SHA512 - which with MD5 and the {SSHA512} on the front needs 101 bytes
for the password in the db

I have only seen references to varchar(40) for the password - I had it set to 100 (doh!)

On the plus side I have it working with Informix - I will do a separate note about the hoops you have to jump through for that.

Sorry for the noise

Regards

--
Clive Eisen
GPG: 3818B5F1






> On 23 Nov 2017, at 12:51, Clive Eisen <clive at hildebrand.co.uk> wrote:
> 
> Good call chaps 
> 
> I have tracked it down to
> 
> Trying CRYPTED validate with {SSHA512}+pCMXZt0RWx/lE/ggcoOJWEUheG9yKiHKLzOUqb1/GJQjyXMgeO3yy1Z4b6meNyavTqAxDJpsS3HuPcTpVeDofi6ilo, secret at /root/perl5/perlbrew/perls/perl-5.24.1/lib/site_perl/5.24.1/Dancer2/Plugin/Auth/Extensible/Role/Provider.pm line 85.
> 
> +pCMXZt0RWx/lE/ggcoOJWEUheG9yKiHKLzOUqb1/GJQjyXMgeO3yy1Z4b6meNyavTqAxDJpsS3HuPcTpVeDofi6ilo= 
> 
> eq
> 
>  +pCMXZt0RWx/lE/ggcoOJWEUheG9yKiHKLzOUqb1/GJQjyXMgeO3yy1Z4b6meNyavTqAxDJpsS3HuPcTpVeDofi6ilo 
> 
> at /root/perl5/perlbrew/perls/perl-5.24.1/lib/site_perl/5.24.1/Crypt/SaltedHash.pm line 308.
> 
> So the original in DB password is padded %4 with = (as it should be) 
> and the freshly encyrpted one is not
> 
> I will try and figure out why
> 
> --
> Clive Eisen
> GPG: 3818B5F1
> 
> 
> 
> 
> 
> 
>> On 23 Nov 2017, at 11:41, Nathan Bailey <web at polynate.net <mailto:web at polynate.net>> wrote:
>> 
>> And in support of Andy's comments below - I put a debug warn statement at the start of each sub in Extensible.pm and Database.pm to work out where things weren't working.
>> Also turn up your logging to get the 'debug' level reports from DPAE into your logs.
>> 
>> On 23 November 2017 at 22:10, Andrew Beverley <andy at andybev.com <mailto:andy at andybev.com>> wrote:
>> On Thu, 23 Nov 2017 10:28:31 +0000 Clive Eisen wrote:
>> > However the login is failing and I am just returned to the login screen
>> > with the banner set to LOGIN FAILED
>> >
>> > There is no indication WHAT is failing - can anyone suggest either what
>> > is wrong or where I can add debug - I have tried with and without roles.
>> 
>> I would start by hacking some debug statements directly into the
>> authenticate_user() subroutine in Provider/Database.pm
>> 
>> That function should be called by DPAE, so you can check firstly that
>> it's actually being called, and secondly if/what/why it's returning a
>> failure (assuming it is).
>> 
>> Andy
>> _______________________________________________
>> dancer-users mailing list
>> dancer-users at dancer.pm <mailto:dancer-users at dancer.pm>
>> http://lists.preshweb.co.uk/mailman/listinfo/dancer-users <http://lists.preshweb.co.uk/mailman/listinfo/dancer-users>
>> 
>> _______________________________________________
>> dancer-users mailing list
>> dancer-users at dancer.pm <mailto:dancer-users at dancer.pm>
>> http://lists.preshweb.co.uk/mailman/listinfo/dancer-users
> 
> _______________________________________________
> dancer-users mailing list
> dancer-users at dancer.pm
> http://lists.preshweb.co.uk/mailman/listinfo/dancer-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.preshweb.co.uk/pipermail/dancer-users/attachments/20171123/fa5baaca/attachment.html>

More information about the dancer-users mailing list