Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use hash+salt for storing passwords. #12

Open
fooker opened this issue Nov 4, 2014 · 0 comments
Open

Use hash+salt for storing passwords. #12

fooker opened this issue Nov 4, 2014 · 0 comments
Labels
backend enhancement
Milestone
0.1

Comments

@fooker
Copy link
Member

fooker commented Nov 4, 2014

Currently, a users password is hashed without a salt for storing in the database.

The code uses 'hashlib' for this, which does not support salt handling. 'passlib' allows hashing with a salt.
@fooker fooker mentioned this issue Nov 5, 2014
Merged
reissmann added a commit that referenced this issue Nov 5, 2014
@reissmann
Merge pull request #14 from /issues/12
ee09e18 
Use salted hash for storing passwords
@reissmann reissmann added this to the 0.1 milestone Nov 8, 2014
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
backend enhancement
Projects
None yet
Milestone
0.1
Development

No branches or pull requests
2 participants
@fooker @reissmann