CV wrote: > ...but the result is "false". Do we need to work the salt in? And if > yes, how? Trying to pass it as a constructor argument or trying the > "salt" setter doesn't work.
You're saving the crypted_password and the salt that was used to create it, so the validation of a newly submitted password is to pass it through the same function and compare the end results... Does Bcrypt of "newly submitted password" and u.password_salt == u.crypted_password -- Posted via http://www.ruby-forum.com/. -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to rubyonrails-t...@googlegroups.com. To unsubscribe from this group, send email to rubyonrails-talk+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en.
