Users: password changes via the web UI now use Argon2
[?]
Apr 15, 2021, 2:56 PM
QA7SEIVP756UUYM5SEXOLEONOG5M2XS3QSL4A4BP2LXHA3EG2AUQCDependencies
- [2]
56Q5PJPGUsers: transparently upgrade passwords to Argon2 - [3]
S66BOMVU* Added authentication. - [4]
IFY7BYPSUser.pm: Handle params from JSON properly - [5]
MQMF2LBWRe-enable adding new users via the web interface - [6]
ASPD4MDNPasswords: check in constant time - [7]
XJRJ4J7MAdd user registration - [8]
LSZLZHJYAllow users to edit their own settings - [9]
RX5IIZMTUse Email::MIME instead of Email::Simple - [10]
4AKMU4ZBClean up user editing - [11]
SYLVCTT6Start api cleanup with the User model
Change contents
- edit in src/lib/Hydra/Controller/User.pm at line 229
}sub setPassword {my ($user, $password) = @_;$user->update({ password => sha1_hex($password) }); - replacement in src/lib/Hydra/Controller/User.pm at line 291
setPassword($user, $password);$user->setPassword($password); - replacement in src/lib/Hydra/Controller/User.pm at line 391
setPassword($user, $password);$user->setPassword($password); - edit in src/lib/Hydra/Schema/Users.pm at line 216
sub check_password {my ($self, $password) = @_; - edit in src/lib/Hydra/Schema/Users.pm at line 217
sub _authenticator() { - edit in src/lib/Hydra/Schema/Users.pm at line 228
return $authenticator;}sub check_password {my ($self, $password) = @_; - edit in src/lib/Hydra/Schema/Users.pm at line 235
my $authenticator = _authenticator(); - replacement in src/lib/Hydra/Schema/Users.pm at line 238
$self->update({"password" => $authenticator->hash_password($password),});$self->setPassword($password); - edit in src/lib/Hydra/Schema/Users.pm at line 247
sub setPassword {my ($self, $password) = @_;;$self->update({"password" => _authenticator()->hash_password($password),});}