From 7c8cc0801a16eded4f49cb6ac823de96e8cfc73b Mon Sep 17 00:00:00 2001
From: Leendert de Borst <ldeborst@xivisoft.com>
Date: Wed, 14 Jan 2026 11:41:25 +0100
Subject: [PATCH] Update UserRegistrationService.cs (#1404)

---
 .../Services/Auth/UserRegistrationService.cs               | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/apps/server/AliasVault.Client/Services/Auth/UserRegistrationService.cs b/apps/server/AliasVault.Client/Services/Auth/UserRegistrationService.cs
index 0691a9442..73338df6e 100644
--- a/apps/server/AliasVault.Client/Services/Auth/UserRegistrationService.cs
+++ b/apps/server/AliasVault.Client/Services/Auth/UserRegistrationService.cs
@@ -57,10 +57,11 @@ public class UserRegistrationService(HttpClient httpClient, AuthenticationStateP
             var passwordHash = await Encryption.DeriveKeyFromPasswordAsync(password, salt, encryptionType, encryptionSettings);
             var passwordHashString = BitConverter.ToString(passwordHash).Replace("-", string.Empty);
 
-            // Generate verifier using Rust WASM
-            var (srpSalt, srpVerifier) = await srpService.PreparePasswordChangeAsync(srpIdentity, passwordHashString);
+            // Derive SRP private key and verifier using the same salt
+            var privateKey = await srpService.DerivePrivateKeyAsync(salt, srpIdentity, passwordHashString);
+            var srpVerifier = await srpService.DeriveVerifierAsync(privateKey);
 
-            var registerRequest = new RegisterRequest(username, srpSalt, srpVerifier, encryptionType, encryptionSettings, srpIdentity);
+            var registerRequest = new RegisterRequest(username, salt, srpVerifier, encryptionType, encryptionSettings, srpIdentity);
             var result = await httpClient.PostAsJsonAsync("v1/Auth/register", registerRequest);
             var responseContent = await result.Content.ReadAsStringAsync();