it compiles again!

author: Quentin Dufour <quentin@deuxfleurs.fr> 2023-12-13 16:09:01 +0100
committer: Quentin Dufour <quentin@deuxfleurs.fr> 2023-12-13 16:09:01 +0100
commit: 064a1077c8c66fe8d3ee71f831c930e1ddfbc34a (patch)
tree: 41d8556aa5d871921a64b081ba157ade212558d8 /src/login/ldap_provider.rs
parent: 47e25cd7f710fcd82356377cf48eccf9f65d31cc (diff)
download: aerogramme-064a1077c8c66fe8d3ee71f831c930e1ddfbc34a.tar.gz
aerogramme-064a1077c8c66fe8d3ee71f831c930e1ddfbc34a.zip
1 files changed, 16 insertions, 4 deletions
diff --git a/src/login/ldap_provider.rs b/src/login/ldap_provider.rs
index f72b289..6e94061 100644
--- a/src/login/ldap_provider.rs
+++ b/src/login/ldap_provider.rs
@@ -17,6 +17,7 @@ pub struct LdapLoginProvider {
     attrs_to_retrieve: Vec<String>,
     username_attr: String,
     mail_attr: String,
+    crypto_root_attr: String,
 
     storage_specific: StorageSpecific,
 }
@@ -48,6 +49,7 @@ impl LdapLoginProvider {
         let mut attrs_to_retrieve = vec![
             config.username_attr.clone(),
             config.mail_attr.clone(),
+            config.crypto_root_attr.clone(),
         ];
 
         // storage specific
@@ -78,6 +80,7 @@ impl LdapLoginProvider {
             attrs_to_retrieve,
             username_attr: config.username_attr,
             mail_attr: config.mail_attr,
+            crypto_root_attr: config.crypto_root_attr,
             storage_specific: specific,
         })
     }
@@ -155,10 +158,16 @@ impl LoginProvider for LdapLoginProvider {
             .context("Invalid password")?;
         debug!("Ldap login with user name {} successfull", username);
 
+        // cryptography
+        let crstr = get_attr(&user, &self.crypto_root_attr)?;
+        let cr = CryptoRoot(crstr);
+        let keys = cr.crypto_keys(password)?;
+
+        // storage
         let storage = self.storage_creds_from_ldap_user(&user)?;
+
         drop(ldap);
 
-        let keys = CryptoKeys::open(&storage, password).await?;
 
         Ok(Credentials { storage, keys })
     }
@@ -197,12 +206,15 @@ impl LoginProvider for LdapLoginProvider {
         let user = SearchEntry::construct(matches.into_iter().next().unwrap());
         debug!("Found matching LDAP user for email {}: {}", email, user.dn);
 
+        // cryptography
+        let crstr = get_attr(&user, &self.crypto_root_attr)?;
+        let cr = CryptoRoot(crstr);
+        let public_key = cr.public_key()?;
+
+        // storage 
         let storage = self.storage_creds_from_ldap_user(&user)?;
         drop(ldap);
 
-        let k2v_client = storage.row_store()?;
-        let (_, public_key) = CryptoKeys::load_salt_and_public(&k2v_client).await?;
-
         Ok(PublicCredentials {
             storage,
             public_key,
author	Quentin Dufour <quentin@deuxfleurs.fr>	2023-12-13 16:09:01 +0100
committer	Quentin Dufour <quentin@deuxfleurs.fr>	2023-12-13 16:09:01 +0100
commit	064a1077c8c66fe8d3ee71f831c930e1ddfbc34a (patch)
tree	41d8556aa5d871921a64b081ba157ade212558d8 /src/login/ldap_provider.rs
parent	47e25cd7f710fcd82356377cf48eccf9f65d31cc (diff)
download	aerogramme-064a1077c8c66fe8d3ee71f831c930e1ddfbc34a.tar.gz aerogramme-064a1077c8c66fe8d3ee71f831c930e1ddfbc34a.zip