From 1cf6504bbbaf946da792985a0bd7ada6ea85a281 Mon Sep 17 00:00:00 2001
From: lonkaars <l.leblansch@gmail.com>
Date: Thu, 22 Apr 2021 21:35:02 +0200
Subject: implement user secrets

---
 api/auth/signup.py   | 5 +++--
 database/init_db.sql | 2 +-
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/api/auth/signup.py b/api/auth/signup.py
index bf1208d..571adb4 100644
--- a/api/auth/signup.py
+++ b/api/auth/signup.py
@@ -5,6 +5,7 @@ import auth.token as token
 import passwords
 import time
 import re
+import bcrypt
 
 
 # checks if the usename is between 3 and 35 charachters
@@ -68,8 +69,8 @@ def index():
 
     # write new user to database and commit
     cursor.execute(
-        "insert into users values (?, ?, ?, NULL, NULL, ?, ?, \"[]\", FALSE, \"user\", \"{}\", \"online\") ",
-        (user_id, username, email, password_hash, registered)
+        "insert into users values (?, ?, ?, NULL, NULL, ?, ?, \"[]\", FALSE, \"user\", \"{}\", ?) ",
+        (user_id, username, email, password_hash, registered, bcrypt.gensalt())
     )
     connection.commit()
 
diff --git a/database/init_db.sql b/database/init_db.sql
index cd52e2e..0807b56 100644
--- a/database/init_db.sql
+++ b/database/init_db.sql
@@ -12,7 +12,7 @@ create table if not exists users (
 	verified_email boolean not null,
 	type text not null,
 	preferences text not null,
-	presence text
+	secret text not null
 );
 
 create table if not exists games (
-- 
cgit v1.2.3