Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Whenever the password is updated ensure that the hash algorithm is too #13966

Merged
merged 1 commit into from
Dec 12, 2020
Merged

Whenever the password is updated ensure that the hash algorithm is too #13966

merged 1 commit into from
Dec 12, 2020

Conversation

zeripath
Copy link
Contributor

@zeripath zeripath commented Dec 12, 2020
edited
Loading

user.HashPassword may potentially - and in fact now likely does - change the passwd_hash_algo therefore whenever the passwd is updated, this also needs to be updated.

Fix #13832

Thanks @fblaese for the hint

Signed-off-by: Andrew Thornton art27@cantab.net

@zeripath
Whenever the password is updated ensure that the hash algorithm is too
a581d0d 
`user.HashPassword` may potentially - and in fact now likely does - change
the `passwd_hash_algo` therefore whenever the `passwd` is updated, this
also needs to be updated.

Fix go-gitea#13832

Thanks @fblaese for the hint

Signed-off-by: Andrew Thornton <art27@cantab.net>
@GiteaBot GiteaBot added the lgtm/need 1 This PR needs approval from one additional maintainer to be merged. label Dec 12, 2020
@GiteaBot GiteaBot added lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. and removed lgtm/need 1 This PR needs approval from one additional maintainer to be merged. labels Dec 12, 2020
@6543 6543 merged commit 287b594 into go-gitea:master Dec 12, 2020
@6543
Copy link
Member

6543 commented Dec 12, 2020

@zeripath backport 🙃

@zeripath zeripath deleted the fix-13832-update-password-algorithm-with-passwd-change branch December 12, 2020 19:05
zeripath added a commit to zeripath/gitea that referenced this pull request Dec 12, 2020
@zeripath
Whenever the password is updated ensure that the hash algorithm is too (
c071190 
go-gitea#13966)

Backport go-gitea#13966

`user.HashPassword` may potentially - and in fact now likely does - change
the `passwd_hash_algo` therefore whenever the `passwd` is updated, this
also needs to be updated.

Fix go-gitea#13832

Thanks @fblaese for the hint

Signed-off-by: Andrew Thornton <art27@cantab.net>
@zeripath zeripath mentioned this pull request Dec 12, 2020
Merged
@zeripath zeripath added the backport/done All backports for this PR have been created label Dec 12, 2020
6543 pushed a commit that referenced this pull request Dec 13, 2020
@zeripath
Whenever the password is updated ensure that the hash algorithm is too (
8e8e8ee 
#13966) (#13967)

Backport #13966

`user.HashPassword` may potentially - and in fact now likely does - change
the `passwd_hash_algo` therefore whenever the `passwd` is updated, this
also needs to be updated.

Fix #13832

Thanks @fblaese for the hint

Signed-off-by: Andrew Thornton <art27@cantab.net>
@go-gitea go-gitea locked and limited conversation to collaborators Jan 18, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@techknowlogick techknowlogick techknowlogick approved these changes

@6543 6543 6543 approved these changes

@jolheiser jolheiser jolheiser approved these changes

Assignees
No one assigned
Labels
backport/done All backports for this PR have been created lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. type/bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

After upgrading to 1.13.0, can no longer login
5 participants
@zeripath @6543 @techknowlogick @jolheiser @GiteaBot