Fix for ARGON2 passwords, they shouldnt be base64 encoded. Fixes #316

2025-05-03 23:37:32 +10:00 · 2025-05-03 23:37:32 +10:00 · 6f63726606
commit 6f63726606
parent 2341c54da4
1 changed files with 3 additions and 3 deletions
--- a/app/Classes/LDAP/Attribute/Password/Argon2i.php
+++ b/app/Classes/LDAP/Attribute/Password/Argon2i.php
@ -10,16 +10,16 @@ final class Argon2i extends Base

 	public static function subid(string $password): bool
 	{
-		return str_starts_with(base64_decode(self::password($password)),self::identifier.'$');
+		return str_starts_with(self::password($password),self::identifier.'$');
 	}

 	public function compare(string $source,string $compare): bool
 	{
-		return password_verify($compare,base64_decode($this->password($source)));
+		return password_verify($compare,$this->password($source));
 	}

 	public function encode(string $password): string
 	{
-		return sprintf('{%s}%s',self::key,base64_encode(password_hash($password,PASSWORD_ARGON2I)));
+		return sprintf('{%s}%s',self::key,password_hash($password,PASSWORD_ARGON2I));
 	}
 }