Implement admin password hashing with bcrypt (#3754)

* Add bcrypt hashing helpers * SetAdminPassword now hashes the password before saving it * BasicAuth now compares the bcrypt hash for the password * Modify migration2 to avoid a double password hash when upgrading * Add migration for bcrypt hashed password * Do not show admin password hash as initial value * Update api tests to compare the bcrypt hash of the admin password instead * Remove old admin password api tests --------- Co-authored-by: Gabe Kangas <gabek@real-ity.com>
2024-06-27 09:20:22 +05:00
parent 51cd16dcc1
commit a7e5f20337
8 changed files with 497 additions and 3061 deletions
--- a/web/components/admin/EditInstanceDetails2.tsx
+++ b/web/components/admin/EditInstanceDetails2.tsx
@@ -26,7 +26,6 @@ export default function EditInstanceDetails() {
  const { serverConfig } = serverStatusData || {};

  const {
-    adminPassword,
    ffmpegPath,
    rtmpServerPort,
    webServerPort,
@@ -37,7 +36,6 @@ export default function EditInstanceDetails() {

  useEffect(() => {
    setFormDataValues({
-      adminPassword,
      ffmpegPath,
      rtmpServerPort,
      webServerPort,
@@ -81,7 +79,6 @@ export default function EditInstanceDetails() {
            fieldName="adminPassword"
            {...TEXTFIELD_PROPS_ADMIN_PASSWORD}
            value={formDataValues.adminPassword}
-            initialValue={adminPassword}
            type={TEXTFIELD_TYPE_PASSWORD}
            onChange={handleFieldChange}
            onSubmit={showStreamKeyChangeMessage}