user: use base64.URLEncoding for passwords

Run go fmt on db/paste.go
2023-04-30 18:24:30 +02:00 · 2023-04-30 18:17:18 +02:00
2 changed files with 5 additions and 5 deletions
--- a/internal/db/paste.go
+++ b/internal/db/paste.go
@@ -24,7 +24,7 @@ type Paste struct {
 	ID          uint       `gorm:"primaryKey"`
 	Type        PasteType  `gorm:"index"`
 	State       PasteState `gorm:"index"`
-  CreatedBy   uint       `gorm:"index"`
+	CreatedBy   uint       `gorm:"index"`
 	Content     []byte
 	Key         string `gorm:"uniqueIndex"`
 	DeleteToken string
--- a/internal/db/user.go
+++ b/internal/db/user.go
@@ -84,8 +84,8 @@ func HashPassword(password string) (string, error) {
 	hash := argon2.IDKey([]byte(password), salt, 2, 64*1024, 1, pwdHashSize)
 	// Encode the salt and hash as a string in PHC format
-	encodedSalt := base64.RawStdEncoding.EncodeToString(salt)
+	encodedSalt := base64.URLEncoding.EncodeToString(salt)
-	encodedHash := base64.RawStdEncoding.EncodeToString(hash)
+	encodedHash := base64.URLEncoding.EncodeToString(hash)
 	return fmt.Sprintf("$%s$%s$%s$%s", pwdAlgo, pwdParams, encodedSalt, encodedHash), nil
 }
@@ -98,11 +98,11 @@ func comparePassword(hashedPassword string, password string) (bool, error) {
 	encodedSalt, encodedHash := fields[2], fields[3]
 	// Decode the salt and hash from base64
-	salt, err := base64.RawStdEncoding.DecodeString(encodedSalt)
+	salt, err := base64.URLEncoding.DecodeString(encodedSalt)
 	if err != nil {
 		return false, err
 	}
-	hash, err := base64.RawStdEncoding.DecodeString(encodedHash)
+	hash, err := base64.URLEncoding.DecodeString(encodedHash)
 	if err != nil {
 		return false, err
 	}
Author	SHA1	Message	Date
Yorick van Pelt	e8fdc75183	user: use base64.URLEncoding for passwords	2023-04-30 18:24:30 +02:00
Yorick van Pelt	e055d210ef	Run go fmt on db/paste.go	2023-04-30 18:17:18 +02:00