Updated settings local.py with new password hasher settings.

troyscott · May 31, 2012 · e9373f6 · e9373f6
1 parent c09edd2
commit e9373f6
Showing 1 changed file with 11 additions and 2 deletions.
diff --git a/project/settings/local.py-dist b/project/settings/local.py-dist
@@ -45,11 +45,20 @@ DEV = True
 
 # # Playdoh ships with sha512 password hashing by default. Bcrypt+HMAC is safer,
 # # so it is recommended. Please read <https://github.com/fwenzel/django-sha2#readme>,
-# # then switch this to bcrypt and pick a secret HMAC key for your application.
-# PWD_ALGORITHM = 'bcrypt'
+# # uncomment the bcrypt hasher and pick a secret HMAC key for your application.
+# BASE_PASSWORD_HASHERS = (
+#     'django_sha2.hashers.BcryptHMACCombinedPasswordVerifier',
+#     'django_sha2.hashers.SHA512PasswordHasher',
+#     'django_sha2.hashers.SHA256PasswordHasher',
+#     'django.contrib.auth.hashers.SHA1PasswordHasher',
+#     'django.contrib.auth.hashers.MD5PasswordHasher',
+#     'django.contrib.auth.hashers.UnsaltedMD5PasswordHasher',
+# )
 # HMAC_KEYS = {  # for bcrypt only
 #     '2011-01-01': 'cheesecake',
 # }
+# from django_sha2 import get_password_hashers
+# PASSWORD_HASHERS = get_password_hashers(BASE_PASSWORD_HASHERS, HMAC_KEYS)
 
 # Make this unique, and don't share it with anybody.  It cannot be blank.
 SECRET_KEY = ''