This repository has been archived by the owner on Feb 22, 2024. It is now read-only.
Flask-Bcrypt compatibility? Invalid password when login #816
Comments
|
The answer is yes: use |
jasco
pushed a commit
to jasco/flask-security
that referenced
this issue
Oct 3, 2023
- no longer send a new token upon receiving an expired token - no longer auto-login on successful reset password (backwards compat config variable added) - no longer send identity/email information as part of query params in unauthenticated requests - add Referrer-Policy="no-referrer" as suggested by OWASP Minor improvements to API doc. closes pallets-eco#281
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Hi
I disabled the Flask-Security registration form, and use my previous registration form, here is how I store the password based on user submitted form data:
However, when try to login by using Flask-Security built-in login form, it says invalid password,
then I checked the documentation, I found it might be related to the HMAC idea here,
is it possible that somehow I generate the hashed password by Flask-Bcrypt and finally can be accepted by Flask-Security login backend? I have very limited cryptography knowledge and stuck this for whole night : (
or the mentioned
flask_security.utils.encrypt_passwordin #143 is still available and also the only way to manage this?Thank you!
The text was updated successfully, but these errors were encountered: