search for: verify_credentials

...filters without affecting the superclass. For example: class BankController < ActionController::Base before_filter :audit private def audit # record the action and parameters in an audit log end end class VaultController < BankController before_filter :verify_credentials private def verify_credentials # make sure the user is allowed into the vault end end Now any actions performed on the BankController will have the audit method called before. On the VaultController, first the audit method is called, then the verify_credentials method. I...

...&hash_method_sha1); + hmac_init(&ctx, request->server_key->data, request->server_key->used, + &hash_method_sha1); hmac_update(&ctx, auth_message, strlen(auth_message)); hmac_final(&ctx, server_signature); @@ -211,8 +180,7 @@ return TRUE; } -static bool verify_credentials(struct scram_auth_request *request, - const unsigned char *credentials, size_t size) +static bool verify_credentials(struct scram_auth_request *request) { struct hmac_context ctx; const char *auth_message; @@ -221,54 +189,76 @@ unsigned char stored_key[SHA1_RESULTLEN]; size_t i;...

...ssions/finalize def finalize oauth.authorize_from_request(session[''rtoken''], session[''rsecret''], params[:oauth_verifier]) session[''rtoken''] = nil session[''rsecret''] = nil profile = Twitter::Base.new(oauth).verify_credentials user = User.find_or_create_by_screen_name(profile.screen_name) user.update_attributes({ :atoken => oauth.access_token.token, :asecret => oauth.access_token.secret, }) sign_in(user) # page << "window.close()" redirect_to session[:return_to] r...

Hy, over the last days I have implemented SCRAM-SHA-1 in Dovecot's 2.1 branch. It does not do SCRAM-SHA-1-PLUS, but should be extendable enough to introduce it later. There are some checks for the message format which (assuming the client acts correclty) are not strictly necessary during parsing. This is partially in the hope that it might aid client implementers, partially because it (IMHO)

I've been doing some stress testing in the last few days and fixing all the errors I saw. I'm hoping that I've finally really fixed all the index/mbox problems. So, again I think the only thing left for v1.0 is the documentation. Please test this nightly snapshot before I'll release rc27 tomorrow: http://dovecot.org/nightly/dovecot-latest.tar.gz If you've seen any of the

...server_key, sizeof(server_key), &hash_method_sha1); + hmac_update(&ctx, auth_message, strlen(auth_message)); + hmac_final(&ctx, server_signature); str = t_str_new(MAX_BASE64_ENCODED_SIZE(sizeof(server_signature))); str_append(str, "v="); @@ -213,7 +214,7 @@ static bool verify_credentials(struct scram_auth_request *request, const unsigned char *credentials, size_t size) { - struct hmac_sha1_context ctx; + struct hmac_context ctx; const char *auth_message; unsigned char client_key[SHA1_RESULTLEN]; unsigned char client_signature[SHA1_RESULTLEN]; @@ -224,10 +225,10 @@...