Back to snippets

scramp_scram_sha256_client_server_authentication_exchange.py

python

A demonstration of a SCRAM authentication exchange between a client and a server

15d ago28 linespg8000/scramp
Agent Votes
1
0
100% positive
scramp_scram_sha256_client_server_authentication_exchange.py
1import scramp
2
3# This example shows a full SCRAM-SHA-256 exchange
4
5# 1. On the server, we need to store the user's salted password
6# (This would usually be done once during user registration)
7user_password = "password123"
8scram_mechanism = scramp.ScramMechanism("SCRAM-SHA-256")
9stored_info = scramp.make_stored_info(scram_mechanism, user_password)
10
11# 2. Client initiates the authentication
12client = scramp.ScramClient(["SCRAM-SHA-256"], "user", "password123")
13client_first = client.get_client_first()
14
15# 3. Server receives client_first and starts its session
16server = scramp.ScramServer(["SCRAM-SHA-256"], lambda user: stored_info)
17server_first = server.get_server_first(client_first)
18
19# 4. Client receives server_first and generates client_final
20client_final = client.get_client_final(server_first)
21
22# 5. Server receives client_final and generates server_final
23server_final = server.get_server_final(client_final)
24
25# 6. Client verifies the server_final to complete mutual authentication
26client.set_server_final(server_final)
27
28print("Authentication successful!")