serversdown/terra-view
1
0
Fork 0
Code Issues 14 Pull Requests Actions Packages Projects Releases 5 Wiki Activity

Client portal auth (Phase 1): per-project link + password gate #63

Merged
serversdown merged 21 commits from feat/portal-auth into dev 2026-06-16 14:59:58 -04:00
Conversation 0 Commits 21 Files Changed 25
+1 -3
2 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit ad6de946b5 - Show all commits
backend/auth_passwords.py
+1 -2
View File
@@ -4,7 +4,6 @@ Kept separate from portal_auth (cookie signing) so the future operator auth can
reuse the same hasher. Never store or log raw passwords.""" reuse the same hasher. Never store or log raw passwords."""
import secrets import secrets
from argon2 import PasswordHasher from argon2 import PasswordHasher
from argon2.exceptions import VerifyMismatchError, VerificationError, InvalidHashError
_ph = PasswordHasher() _ph = PasswordHasher()
@@ -18,7 +17,7 @@ def verify_password(raw: str, hashed: str) -> bool:
"""True iff raw matches the stored hash. Never raises.""" """True iff raw matches the stored hash. Never raises."""
try: try:
return _ph.verify(hashed, raw) return _ph.verify(hashed, raw)
except (VerifyMismatchError, VerificationError, InvalidHashError, Exception): except Exception: # argon2 raises on mismatch/garbage; treat all as "no match"
return False return False
tests/test_auth_passwords.py
-1
View File
@@ -1,4 +1,3 @@
import pytest
from backend.auth_passwords import hash_password, verify_password, generate_password from backend.auth_passwords import hash_password, verify_password, generate_password