scram: fix client final message

The client should send r=ServerNonce rather than r=Salt Signed-off-by: Noah Watkins <[email protected]>
zmstone · Feb 28, 2023 · 3449c86 · 3449c86
1 parent 16ff7bb
commit 3449c86
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/kpro_scram.erl b/src/kpro_scram.erl
@@ -67,7 +67,7 @@ parse(#{ sha := Sha
   <<MyNonce:?MY_NONCE_LEN/binary, _/binary>> = ServerNonce,
   Salt = base64:decode(Salt0),
   SaltedPassword = hi(Sha, Password, Salt, Iterations),
-  FinalNoProof = bin([?CHANNEL_BINDING, ",r=", Salt]),
+  FinalNoProof = bin([?CHANNEL_BINDING, ",r=", ServerNonce]),
   AuthMsg = [ClientFirstMsgBare, ",", ServerFirstMsg, ",", FinalNoProof],
   #{ sha => Sha
    , salted_password => SaltedPassword