Implement admin password hashing with bcrypt (#3754)

Browse Source

* Add bcrypt hashing helpers

* SetAdminPassword now hashes the password before saving it

* BasicAuth now compares the bcrypt hash for the password

* Modify migration2 to avoid a double password hash when upgrading

* Add migration for bcrypt hashed password

* Do not show admin password hash as initial value

* Update api tests to compare the bcrypt hash of the admin password instead

* Remove old admin password api tests

---------

Co-authored-by: Gabe Kangas <gabek@real-ity.com>

...

This commit is contained in:

mahmed2000

2024-06-27 09:20:22 +05:00

committed by GitHub

parent 51cd16dcc1

commit a7e5f20337

8 changed files with 497 additions and 3061 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

3497

test/automated/api/package-lock.json generated

File diff suppressed because it is too large Load Diff