policies/hibp: ensure password is encodable

closes AUTHENTIK-1SA Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-01-23 21:23:24 +01:00 · 2022-01-23 21:23:24 +01:00 · 6a411d7960
parent 33567b56d7
commit 6a411d7960
1 changed files with 1 additions and 1 deletions
--- a/authentik/policies/hibp/models.py
+++ b/authentik/policies/hibp/models.py
@ -45,7 +45,7 @@ class HaveIBeenPwendPolicy(Policy):
                fields=request.context.keys(),
            )
            return PolicyResult(False, _("Password not set in context"))
-        password = request.context[self.password_field]
+        password = str(request.context[self.password_field])

        pw_hash = sha1(password.encode("utf-8")).hexdigest()  # nosec
        url = f"https://api.pwnedpasswords.com/range/{pw_hash[:5]}"