-
htpasswd files like generated from apache is not properly supported.
The format is:
```
test:{SHA}Or7xoUzOzSDWzoksvgQq5tdJRsg=
```
{SHA} is the hashing algorithmus used, can be MD5, SHA, without,…
-
Comments for https://www.endpointdev.com/blog/2014/07/interchange-582-release-with-bcrypt/
By Mark Johnson
To enter a comment:
1. Log in to GitHub
2. Leave a comment on this issue.
-
An alternative to the `htpasswd` tool from Apache is to use something like `printf "USERNAME:$(openssl passwd PASSWORD)\n" >> .htpasswd`. This is useful because various projects (such as nginx or rest…
-
I have a usecase that I think may not be so unique, I have to support multiple forms of encryption on passwords to log users in due to historical userdata that has those forms of encryption in them un…
-
Hello!
Before writing i searching the same issues but anyway not found a solution. :(
Used:
"bcrypt": "^5.1.1",
"@types/bcrypt": "^5.0.2",
"@nestjs/core": "^10.3.10",
Node tested,
node 20…
-
There should have a native implementation of bcrypt and/or Argon that could be used from the $System.Encryption class, specially bcrypt since it became a market standard for securing sensitive informa…
-
I haven't changed any sorcery or user related code for a while but all of a sudden Sorcery is always trying to use the `email` attribute when performing `find_by`. My config is below and I confirmed t…
-
We need more encryption methods so we can implement a system to import form other plugins
Encryption Methods to Add:
- [X] ~~ARGON2~~
- [x] BCRYPT (And possible variants)
- [x] PBKDF2
-
These are effectively passwords and should be treated as such. We should hash/verify them the same way. Presently there's a security risk insofar as a database compromise would compromise all API keys…
-
you can see of my repo `nutra-server` @ 7380410
the following issue:
it installs `python_bcrypt==0.3.2` instead of `bcrypt==3.1.7`