Make argon2 feature work with argon2 2.1.0+

jeremyevans · Oct 5, 2021 · 7a47fdb · 7a47fdb
1 parent 4d68dcc
commit 7a47fdb
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 1 deletion.
diff --git a/CHANGELOG b/CHANGELOG
@@ -1,3 +1,7 @@
+=== master
+
+* Make argon2 feature work with argon2 2.1.0+ (jeremyevans)
+
 === 2.17.0 (2021-09-24)
 
 * Make jwt_refresh work correctly with verify_account_grace_period (jeremyevans)

diff --git a/lib/rodauth/features/argon2.rb b/lib/rodauth/features/argon2.rb
@@ -16,6 +16,18 @@ module Rodauth
 
     private
 
+    if Argon2::VERSION >= '2.1'
+      def argon2_salt_option
+        :salt_for_testing_purposes_only
+      end
+    # :nocov:
+    else
+      def argon2_salt_option
+        :salt_do_not_supply
+      end
+    # :nocov:
+    end
+
     def password_hash_cost
       return super unless use_argon2?
       argon2_hash_cost 
@@ -35,7 +47,7 @@ def password_hash_using_salt(password, salt)
       return super unless argon2_hash_algorithm?(salt)
 
       argon2_params = Hash[extract_password_hash_cost(salt)]
-      argon2_params[:salt_do_not_supply] = Base64.decode64(salt.split('$').last)
+      argon2_params[argon2_salt_option] = Base64.decode64(salt.split('$').last)
       ::Argon2::Password.new(argon2_params).create(password)
     end