Do not accept the password in clear, use an encrypted password

author: Vivien Kraus <vivien@planete-kraus.eu> 2021-07-03 11:06:44 +0200
committer: Vivien Kraus <vivien@planete-kraus.eu> 2021-07-03 11:13:22 +0200
commit: 50aa57c3483ea6e489870e44498fb322a01cc979 (patch)
tree: c6841ed38f607b49116f95e90bd76ae239228790 /tests
parent: 752baccc78ecfc769c0aa228f1af2e1ec1c30027 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/tests/authorization-endpoint-submit-form.scm b/tests/authorization-endpoint-submit-form.scm
index 90de696..f379e38 100644
--- a/tests/authorization-endpoint-submit-form.scm
+++ b/tests/authorization-endpoint-submit-form.scm
@@ -38,6 +38,7 @@
    (define client (string->uri "https://authorization-endpoint-submit-form.scm/client/card#app"))
    (define redirect (string->uri "https://authorization-endpoint-submit-form.scm/client/redirect"))
    (define password "p4ssw0rd")
+   (define encrypted-password (crypt password "$6$this.is.the.salt"))
    (define validity 120)
    (define the-time 0)
    (define (current-time)
@@ -61,7 +62,7 @@
    (define jti-list (make-jti-list))
    (define endpoint
      (make-authorization-endpoint
-      subject password alg key validity
+      subject encrypted-password alg key validity
       #:http-get cached-http-get
       #:current-time current-time))
    (receive (response response-body)
author	Vivien Kraus <vivien@planete-kraus.eu>	2021-07-03 11:06:44 +0200
committer	Vivien Kraus <vivien@planete-kraus.eu>	2021-07-03 11:13:22 +0200
commit	50aa57c3483ea6e489870e44498fb322a01cc979 (patch)
tree	c6841ed38f607b49116f95e90bd76ae239228790 /tests
parent	752baccc78ecfc769c0aa228f1af2e1ec1c30027 (diff)