BCrypt InvalidSalt after enabling password_archivable

phatworx / devise_security_extension

An enterprise security extension for devise, trying to meet industrial standard security demands for web applications.

MIT License

747 stars 346 forks source link

BCrypt InvalidSalt after enabling password_archivable #168

Closed mathieujobin closed 8 years ago

mathieujobin commented 8 years ago

I am getting this error

      invalid salt (BCrypt::Errors::InvalidSalt)
      ./lib/devise/encryptable/encryptors/canopy_encryptor.rb:14:in `digest'
      ./lib/devise/encryptable/encryptors/canopy_encryptor.rb:23:in `compare'
      ./app/controllers/password_resets_controller.rb:24:in `update'

after enabling :password_archivable

disabling :encryptable actually fixes the issue

any idea how the two could work together ?