Skip to content


Subversion checkout URL

You can clone with
Download ZIP


Set default crypto_provider to SCrypt #396

merged 1 commit into from

2 participants


The default crypto_provider is assumed to be SCrypt in the tests, but it was still set to Sha512.
This solves 2 of the failing password tests in #393.


I'm actually not sure I want to change the default as it would break backwards compatibility. Anyone have any thoughts on this? I'd like to update the default as Sha512 is weak.


I'm doing it and bumping the version, sha512 is outdated. Gotta move with the times.

@binarylogic binarylogic merged commit 2bff3e5 into binarylogic:master
@Hermanverschooten Hermanverschooten deleted the unknown repository branch
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Commits on Mar 1, 2014
  1. @Hermanverschooten
This page is out of date. Refresh to see the latest.
Showing with 3 additions and 4 deletions.
  1. +3 −4 lib/authlogic/acts_as_authentic/password.rb
7 lib/authlogic/acts_as_authentic/password.rb
@@ -144,13 +144,12 @@ def merge_validates_length_of_password_confirmation_field_options(options = {})
# The class you want to use to encrypt and verify your encrypted passwords. See the Authlogic::CryptoProviders module for more info
- # on the available methods and how to create your own. It is strongly recommended that you use SCrpyt or BCrypt. The default is Sah512 to
- # support backwards compatibility.
+ # on the available methods and how to create your own.
- # * <tt>Default:</tt> CryptoProviders::Sha512
+ # * <tt>Default:</tt> CryptoProviders::SCrypt
# * <tt>Accepts:</tt> Class
def crypto_provider(value = nil)
- rw_config(:crypto_provider, value, CryptoProviders::Sha512)
+ rw_config(:crypto_provider, value, CryptoProviders::SCrypt)
alias_method :crypto_provider=, :crypto_provider
Something went wrong with that request. Please try again.