-
-
Notifications
You must be signed in to change notification settings - Fork 815
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Implement admin password hashing with bcrypt #3754
base: develop
Are you sure you want to change the base?
Conversation
Passing run #16935 ↗︎Details:
Review all test suite changes for PR #3754 ↗︎ |
All looks great in my usage testing! Though I went to use the updated admin to try to change the password there and I ran into #3775, so I haven't yet been able to test that because of that bug. The only change there, though, would be not displaying the password in the admin UI. |
When using another browser I had no problems, so something must have been cached. |
I'll have to fix this conflict, but then we can merge this in. |
#2495
Works, but not tested extensively. Stream keys still plaintext.
Edit:
api tests are failing because they still expect the raw password instead of the hash, will get to them in either a few hours or tomorrowEdit 2: Tests work now, just grabbed the first package for bcrypt I found, hasn't been updated in a while. Lmk if there's a different package you'd rather use, otherwise this should be good?