Fix SCRAM implementation to adhere spec#60

Merged

elprans merged 1 commit intomasterfrom

Dec 29, 2019

Contributor

tailhook commented Dec 27, 2019 •

edited

Loading

By specification nonce is not base64 encoded string. Quoting the
spec:

r: This attribute specifies a sequence of random printable ASCII
characters excluding ',' (which forms the nonce used as input to
the hash function). No quoting is applied to this string.

I mean current edgedb doesn't accept anything other than valid
base64-encoded string including padding, which is wrong. (The generation
of nonce using base64 as well as client implementation are fine).

Unfortunately this requires a tiny patch in the edgedb itself (so tests are broken now).

tailhook added a commit to geldata/gel that referenced this pull request


          Fixes mock scram auth with new edgedb-python

50f4541

The edgedb-python that requires this is:
geldata/gel-python#60

tailhook mentioned this pull request

Fixes mock scram auth with new edgedb-python geldata/gel#1025

Merged


          Fix SCRAM implementation to adhere spec

9865a3e

By specification `nonce` is not base64 encoded string. Quoting the
spec:

>  o  r: This attribute specifies a sequence of random printable ASCII
>     characters excluding ',' (which forms the nonce used as input to
>     the hash function).  No quoting is applied to this string.

I mean current edgedb doesn't accept anything other than valid
base64-encoded string including padding, which is wrong. (The generation
of nonce using base64 as well as client implementation are fine).

tailhook force-pushed the fix_scram branch from f8c1b4b to 9865a3e Compare

December 27, 2019 12:55

tailhook added the high priority label

ambv reviewed

View reviewed changes

edgedb/scram/__init__.py Show resolved Hide resolved

ambv reviewed

View reviewed changes

edgedb/scram/__init__.py Show resolved Hide resolved

elprans approved these changes

View reviewed changes

elprans merged commit 9935129 into master

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

16f60e6

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans mentioned this pull request

Merged

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

2d43537

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

ae15867

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

da60ba4

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

ec51c72

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

0f19205

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

f872714

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

92fb518

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

1st1 deleted the fix_scram branch

December 30, 2019 20:40

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

964f09b

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

1st1 pushed a commit to geldata/gel that referenced this pull request


          Fixes mock scram auth with new edgedb-python

bc72007

The edgedb-python that requires this is:
geldata/gel-python#60

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

b734f84

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

* Update SASL-related protocol messages
  (by @tailhook in cc95d8d)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

* Update SASL-related protocol messages
  (by @tailhook in cc95d8d)

elprans added a commit that referenced this pull request


          TESTING RELEASE FLOW: v0.7.0a5

37c3594

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

* Update SASL-related protocol messages
  (by @tailhook in cc95d8d)

elprans added a commit that referenced this pull request


          v0.7.0a5

0d6e459

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

* Update SASL-related protocol messages
  (by @tailhook in cc95d8d)

elprans added a commit that referenced this pull request


          v0.7.0a5

d13cd38

Fixes
=====

* Fix SCRAM implementation to adhere to the spec
  (by @tailhook in 9935129 for #60)

* Update SASL-related protocol messages
  (by @tailhook in cc95d8d)

* Set protocol version to 0.7
  (by @1st1 in 919a4c7)

This comment was marked as off-topic.

Sign in to view

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels