$user ||= $_->param("login")\r
|| $_->param("user")\r
|| $_->param("username")\r
- || Catalyst::Exception->throw("Can't determine username for login");\r
+ || return;\r
\r
$password ||= $_->param("password")\r
|| $_->param("passwd")\r
|| $_->param("pass")\r
- || Catalyst::Exception->throw("Can't determine password for login");\r
+ || return;\r
}\r
\r
$user = $c->get_user($user) || return\r
return 1;\r
}\r
else {\r
- return undef;\r
+ return;\r
}\r
}\r
\r
$d->add($password);\r
$d->add( $user->password_post_salt || '' );\r
\r
- return $d->digest eq $user->hashed_password;\r
+ my $stored = $user->hashed_password;\r
+ my $computed = $d->digest;\r
+\r
+ return ( ( $computed eq $stored )\r
+ || ( unpack( "H*", $computed ) eq $stored ) );\r
}\r
elsif ( $user->supports(qw/password salted_hash/) ) {\r
require Crypt::SaltedHash;\r
Returns a string to be hashed before/after the user's password. Typically only\r
a pre-salt is used.\r
\r
+=back\r
+\r
=head2 Crypt::SaltedHash Passwords\r
\r
Predicate:\r