Rails minitest BCrypt ::错误:: InvalidHash:

时间:2015-11-03 19:16:31

标签: ruby ruby-on-rails-4 minitest bcrypt digest

我一直在关注Hartl的Rails教程,我正在为我的登录实现minitests。目前,一切正常,用户可以成功登录。

但是当我在登录集成上运行测试时,当我尝试消化令牌时,我不断收到此错误.... 

BCrypt::Errors::InvalidHash: invalid hash
  app/controllers/sessions_controller.rb:13:in `create'
  test/integration/users_login_test.rb:21:in `block in <class:UsersLoginTest>'
  app/controllers/sessions_controller.rb:13:in `create'
  test/integration/users_login_test.rb:21:in `block in <class:UsersLoginTest>'

有人可以帮助我理解这个错误,以及我如何能够解决它。

模型 

class User < ActiveRecord::Base
  belongs_to :district
  belongs_to :school

  ###Why doesn't this work?------
  def User.digest(token)
    Digest::SHA1.hexdigest(token.to_s)
  end

end

灯具(users.yml)

tom:
  district_id: 1
  school_id: 6
  firstName: Tommy
  lastName: Pickles
  username: pickleman
  email: pickleman@gmail.com

  ###Error on this line------
  password_digest: <%= User.digest('password') %>

集成(user_login_test.rb)

require 'test_helper'

class UsersLoginTest < ActionDispatch::IntegrationTest

  def setup
    @user = users(:tom)
  end

  test "login with valid information" do
    get login_path

    ###Error on Sign Up Here------
    post sessions_path, session: { username: @user.username, password: 'password' }

    assert_redirected_to district_district_resources_path(@user.district)
    follow_redirect!
    assert_template 'sessions/new'
    assert_select "a[href=?]", login_path, count: 0
  end

end

控制器 

class SessionsController < ApplicationController

  #create session for login
  def create
    user = User.find_by(username: params[:session][:username]) if defined? params[:session][:username]  
    district = user.district if user
    school = user.school if user

    if user && user.authenticate(params[:session][:password]) && district
        user_sign_in user
        redirect_to district_district_resources_path(district)
    else
        flash.now[:error] = 'Invalid username / password combination' # Not quite right!
        render 'new'
    end

end

3 个答案:

答案 0 :(得分:2)

当存储在BCrypt::Errors::InvalidHash中的哈希不是有效的BCrypt哈希时,会引发

password_digest

简而言之,你不能只在那里转储任何SHA1,你需要创建一个像这样的哈希:

sha1_password = Digest::SHA1.hexdigest(token.to_s)
BCrypt::Password.create(sha1_password).to_s

有关此主题的详细说明,请参阅this answer

答案 1 :(得分:2)

找到了解决方法。

使用密码:密码

创建了一个用户

然后我直接将生成的password_digest添加到users.yml中,以便minitest工作。

users.yml里

tom:
  district_id: 1
  school_id: 6
  firstName: Tommy
  lastName: Pickles
  username: pickleman
  email: pickleman@gmail.com

  ###HERE----
  password_digest: $2a$10$g/A4D6KtaLtxvm2lZ8C.vuPvl8Zu2TrbnPYpM6r59Wu397hlY42GO

答案 2 :(得分:1)

如果您尝试通过灯具为最小的测试生成密码,那么我建议您看一下:https://cloud.google.com/console#/project

相关问题
最新问题