Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Devise Encryptor, why authlogic_sha512? #216

Open
aaronzdavis opened this issue Oct 25, 2021 · 1 comment
Open

Devise Encryptor, why authlogic_sha512? #216

aaronzdavis opened this issue Oct 25, 2021 · 1 comment

Comments

@aaronzdavis
Copy link

I was surprised to see the default encryptor for Devise was overwritten in this gem. Is there a good reason for this?

When I attempted to export my solidus user database to another platform, Firebase Auth, I couldn't find a solution for importing the passwords using the SHA512 examples found in their docs: https://firebase.google.com/docs/auth/admin/import-users

Perhaps someone here might have a clue how to get passwords over to Firebase Auth.

Here's where the encryptor is being set in this repo.

solidus_auth_devise/config/initializers/devise.rb

Line 43 in ed42532

config.encryptor = 'authlogic_sha512'

@jarednorman
Copy link
Member

I encountered this recently. We should probably maintain that setting for old apps, but use bcrypt for new installations. I dug into it and the decision to use authlogic_sha512 goes back really far and I couldn't find any explanation in the git history/project for it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@aaronzdavis @jarednorman