New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fixed #20079 -- Improve security of password reset tokens #1170

Closed
wants to merge 1 commit into
base: master
from

Conversation

Projects
None yet
3 participants
@viciu
Contributor

viciu commented May 19, 2013

No description provided.

@mxsasha

This comment has been minimized.

Show comment
Hide comment
@mxsasha

mxsasha May 19, 2013

Member

As discussed, to add to test_unusable:

# Assert that the unusable passwords actually contain a random part.
# This might fail one day due to a hash collision.
self.assertNotEqual(encoded, make_password(None))
Member

mxsasha commented May 19, 2013

As discussed, to add to test_unusable:

# Assert that the unusable passwords actually contain a random part.
# This might fail one day due to a hash collision.
self.assertNotEqual(encoded, make_password(None))
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment