search

natsukagami / kjudge

A simple system for hosting competitive programming contests.
GNU Affero General Public License v3.0
23 stars 11 forks source link

Salt all passwords on the system #88

Closed minhnhatnoe closed 1 year ago

minhnhatnoe commented 1 year ago

Is your feature request related to a problem? Please describe.

The function at https://github.com/natsukagami/kjudge/blob/be020e807c02c3dacc1ab283f2e3187a277bce7a/server/auth/password.go#L26 currently doesn't implement salting passwords.

natsukagami commented 1 year ago

bcrypt.GenerateFromPassword has salt built-in.