96f97691ad
Fixed broken links in docs and comments.
2016-06-15 21:20:23 -04:00
9407cc966b
Fixed #26635 -- Clarified Argon2PasswordHasher's memory_cost differs from command line utility.
2016-05-27 18:37:12 -04:00
46a38307c2
Removed versionadded/changed annotations for 1.9.
2016-05-20 11:44:29 -04:00
b4250ea04a
Fixed #26033 -- Added Argon2 password hasher.
2016-03-08 11:22:18 -05:00
67b46ba701
Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login.
...
This is a security fix.
2016-03-01 11:25:28 -05:00
47b5a6a43c
Fixed #26187 -- Removed weak password hashers from PASSWORD_HASHERS.
2016-02-22 18:59:23 -05:00
b14470c7b7
Fixed spelling error
2016-02-23 10:24:38 +11:00
5a541e2e6c
Fixed #26188 -- Documented how to wrap password hashers.
2016-02-22 17:21:45 -05:00
a6ef025dfb
Fixed #26124 -- Added missing code formatting to docs headers.
2016-02-01 10:42:05 -05:00
d3b488f5bd
Updated link to 1000 common passwords.
...
xato.net is dead; replaced with link to archive.org.
2015-12-02 12:57:02 -05:00
cb1e779ceb
Refs #24115 -- Added docs for password updates on bcrypt rounds change.
2015-09-22 19:30:31 -04:00
64982cc2fb
Updated Wikipedia links to use https
2015-08-08 12:02:32 +02:00
f5e9d67907
Refs #16860 -- Moved password_changed() logic to AbstractBaseUser.
...
Thanks Carl Meyer for review.
2015-07-20 13:44:26 -04:00
55b3bd8468
Refs #16860 -- Minor edits and fixes to password validation.
2015-06-10 07:41:01 -04:00
1daae25bdc
Fixed #16860 -- Added password validation to django.contrib.auth.
2015-06-07 19:31:20 +02:00
1119063c69
Fixed #24556 -- Added reminder about HTTPS to passwords docs.
2015-04-03 10:55:11 -04:00
9ec8aa5e5d
Fixed #24149 -- Normalized tuple settings to lists.
2015-02-03 14:59:45 -05:00
ed7c4df1ee
Fixed documentation of make_password kwargs.
2014-10-27 06:36:55 -04:00
0e27882b3a
Stray paren
2014-04-17 11:29:07 -07:00
464b98b1fe
Include an 'extra_requires' for bcrypt
2014-04-17 11:28:09 -07:00
51c8045145
Removed versionadded/changed annotations for 1.6.
2014-03-24 11:42:56 -04:00
7f2505ad9e
Fixed doc typos.
2014-02-28 11:44:03 -05:00
28b70425af
Added docs for the hasher's iteration count changes.
2013-10-21 20:32:02 +02:00
2c4fe761a0
Fixed #20593 -- Allow blank passwords in check_password() and set_password()
2013-06-18 13:32:54 -04:00
8f0a4665d6
Recommend using the bcrypt library instead of py-bcrypt
...
* py-bcrypt has not been updated in some time
* py-bcrypt does not support Python3
* py3k-bcrypt, a port of py-bcrypt to python3 is not compatible
with Django
* bcrypt is supported on all versions of Python that Django
supports
2013-05-13 23:49:00 -04:00
f2a0be6151
Fix a missing " character in the password documentation
2013-03-26 15:26:20 -04:00
25f2acfed0
Fixed #20138 -- Added BCryptSHA256PasswordHasher
...
BCryptSHA256PasswordHasher pre-hashes the users password using
SHA256 to prevent the 72 byte truncation inherient in the BCrypt
algorithm.
2013-03-26 13:26:57 -04:00
93cffc3b37
Added missing markup to docs.
2013-03-22 13:50:07 -04:00
c8eff0dbcb
Fixed #19562 -- cleaned up password storage docs
2013-01-04 18:02:10 -08:00
9b5f64cc6e
Fixed #19516 - Fixed remaining broken links.
...
Added -n to sphinx builds to catch issues going forward.
2013-01-02 18:32:57 -05:00
7ee7599ab3
Removed versionadded/changed annotations dating back to 1.4.
2012-12-29 21:59:08 +01:00
11ded967c4
Fixed #19498 -- refactored auth documentation
...
The auth doc was a single page which had grown unwieldy.
This refactor split and grouped the content into sub-topics.
Additional corrections and cleanups were made along the way.
2012-12-28 11:06:12 -08:00
Ville Skyttä
Bas Westerbaan
Tim Graham
Florian Apolloner
Markus Holtermann
rowanv
Eliezer Kanal
Claude Paroz
Erik Romijn
Sam Thursfield
darkryder
Ilya Baryshev
Alex Gaynor
Erik Romijn
Donald Stufft
Preston Holmes
Aymeric Augustin