search

LinusU / secure-remote-password

A modern SRP implementation for Node.js and Web Browsers
101 stars 22 forks source link

README : Step 4 : Incorrect #6

Closed alexgoldstone closed 6 years ago

alexgoldstone commented 6 years ago

Step 4 in the README currently contains the following line (4 parameters):

const serverSession = srp.deriveSession(serverEphemeral, clientPublicEphemeral, verifier, clientSessionProof)

I believe this should be (6 parameters):

const serverSession = srp.deriveSession(serverEphemeral, clientPublicEphemeral, salt, username, verifier, clientSessionProof)
LinusU commented 6 years ago

Fixed by 7888d7a, released as 0.2.3, thank you for spotting this 👌