luzifer/cloudkeys-go
1
0
Fork 0
mirror of https://github.com/Luzifer/cloudkeys-go.git synced 2024-11-08 22:20:05 +00:00
Code Issues Releases Wiki Activity
65 commits 7 branches 21 tags 24 MiB
Commit graph

5 commits

Author SHA1 Message Date
Knut Ahlers
d64fee60c8
Replace insecure password hashing 
Prior this commit passwords were hashed with a static salt and using the
SHA1 hashing function. This could lead to passwords being attackable in
case someone gets access to the raw data stored inside the database.
This commit introduces password hashing using bcrypt hashing function
which addresses this issue.

Old passwords are not automatically re-hashed as they are unknown.
Replacing the old password scheme is not that easy and needs #10 to be
solved. Therefore the old hashing scheme is kept for compatibility
reason.

Signed-off-by: Knut Ahlers <knut@ahlers.me>
 2017-12-24 11:55:52 +01:00
Knut Ahlers
38c7390ddd Fix: On register the username needs to be treated like in login 2015-08-01 00:59:44 +02:00
Knut Ahlers
a89e45f9b9 Do not throw error messages at users, let the frontend handle errors 
fixes #1
 2015-07-29 10:10:46 +02:00
Knut Ahlers
dc3fb4df50 Fixed linter errors 2015-07-29 09:49:42 +02:00
Knut Ahlers
9e7a92abe7 Initial port from PHP to Go 2015-07-29 09:02:14 +02:00