Security - Add a note about generating MessageDigest passwords

silexphp / Silex

[DEPRECATED -- Use Symfony instead] The PHP micro-framework based on the Symfony Components

https://silex.symfony.com

MIT License

3.58k stars 718 forks source link

Security - Add a note about generating MessageDigest passwords #1109

Closed adatta02 closed 9 years ago

adatta02 commented 9 years ago

It's a tad bit confusing that the docs mention being able to secure a route with HTTP Basic Auth (http://silex.sensiolabs.org/doc/providers/security.html#securing-a-path-with-http-authentication) but then don't explicitly mention how to generate a MessageDigest when you don't have a User class setup.

https://gist.github.com/jreinke/3349922 seems to work. Any objection to adding that snippet along with a note after the "Securing a Path with HTTP Authentication" section?

fabpot commented 9 years ago

It's already in the docs, look for security.encoder_factory