From b4abcd1f596297eb083e855d5e9a158d9e108c81 Mon Sep 17 00:00:00 2001
From: Martin <martin.frlin@gmail.com>
Date: Wed, 7 Dec 2016 09:43:22 +0100
Subject: Hashing helpers now deal in unicode. Fixed wording. Added link to
 bcrypt and a footnote from wiki2 example.

---
 docs/tutorials/wiki/src/authorization/tutorial/security.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

(limited to 'docs/tutorials/wiki/src/authorization')

diff --git a/docs/tutorials/wiki/src/authorization/tutorial/security.py b/docs/tutorials/wiki/src/authorization/tutorial/security.py
index 4115c780c..cbb3acd5d 100644
--- a/docs/tutorials/wiki/src/authorization/tutorial/security.py
+++ b/docs/tutorials/wiki/src/authorization/tutorial/security.py
@@ -2,11 +2,13 @@ import bcrypt
 
 
 def hash_password(pw):
-    return bcrypt.hashpw(pw.encode('utf-8'), bcrypt.gensalt())
+    hashed_pw = bcrypt.hashpw(pw.encode('utf-8'), bcrypt.gensalt())
+    # return unicode instead of bytes because databases handle it better
+    return hashed_pw.decode('utf-8')
 
 def check_password(expected_hash, pw):
     if expected_hash is not None:
-        return bcrypt.checkpw(pw.encode('utf-8'), expected_hash)
+        return bcrypt.checkpw(pw.encode('utf-8'), expected_hash.encode('utf-8'))
     return False
 
 USERS = {'editor': hash_password('editor'),
-- 
cgit v1.2.3