- def call(%{assigns: %{user: %User{}}} = conn, _), do: conn
-
- def call(conn, opts) do
- with {:ok, username, password} <- decode_header(conn),
- {:ok, user} <- opts[:fetcher].(username),
- false <- !!user.info["deactivated"],
- saved_user_id <- get_session(conn, :user_id),
- {:ok, verified_user} <- verify(user, password, saved_user_id) do
- conn
- |> assign(:user, verified_user)
- |> put_session(:user_id, verified_user.id)
- else
- _ -> conn |> halt_or_continue(opts)
- end
+ def checkpw(password, "$6" <> _ = password_hash) do
+ :crypt.crypt(password, password_hash) == password_hash