fix: Update login page to verify password instead of opening as readonly

2025-01-29 13:59:39 +11:00
parent db5e672d7b
commit 9c32ec788e
7 changed files with 37 additions and 11 deletions
--- a/account.py
+++ b/account.py
@@ -26,7 +26,9 @@ hsw = api.hsw(APIKEY,ip)
 # Verify the connection
 response = hsd.getInfo()

-
+exclude = ["primary"]
+if os.getenv("exclude") is not None:
+    exclude = os.getenv("exclude").split(",")

 def check_account(cookie: str):
    if cookie is None:
@@ -52,9 +54,10 @@ def check_password(cookie: str, password: str):
    info = hsw.rpc_selectWallet(account)
    if info['error'] is not None:
        return False
-    info = hsw.rpc_walletPassphrase(password,10)
+    info = hsw.rpc_walletPassphrase(password,1)
    if info['error'] is not None:
-        return False
+        if info['error']['message'] != "Wallet is not encrypted.":
+            return False
    return True

 def createWallet(account: str, password: str):
@@ -118,6 +121,9 @@ def listWallets():

    # Check if response is json or an array
    if isinstance(response, list):
+        # Remove excluded wallets
+        response = [wallet for wallet in response if wallet not in exclude]
+
        return response
    return ['Wallet not connected']