search

cartalyst / sentry-kohana

Kohana Bridging Package for Sentry 3.
BSD 3-Clause "New" or "Revised" License
5 stars 3 forks source link

Provide an Auth_Sentry driver #4

Closed hkdobrev closed 10 years ago

hkdobrev commented 10 years ago

For maximum compatibility with an existing Kohana application using the Kohana Auth module, it would be great to have an auth driver for Sentry.

This way only the configuration in application/config/auth.php would need to change.

The driver would allow Kohana users to use the same Auth::instance()->logged_in() API, but under the hood this would use Sentry.

This would also be a great security improvement, as the default password hashing now is sha256.

bencorlett commented 10 years ago

sha256 is a terrible hashing algorithm, I’d never encourage it. In fact, we’ve just removed that from Sentry. password_hash() (using brcypt currently).

I’m all for somebody putting in a PR to make that driver-based functionality work, but we’re not really interested in coding that up. In fact, I don’t think the Sentry-Kohana package is near finished for Sentry 3, feel free to help us out there too :)

On 21 Feb 2014, at 10:47 am, Haralan Dobrev notifications@github.com wrote:

For maximum compatibility with an existing Kohana application using the Kohana Auth module, it would be great to have an auth driver for Sentry.

This way only the configuration in application/config/auth.php would need to change.

The driver would allow Kohana users to use the same Auth::instance()->logged_in() API, but under the hood this would use Sentry.

This would also be a great security improvement, as the default password hashing now is sha256.

— Reply to this email directly or view it on GitHub.