authelia/internal/authentication
James Elliott 73bd2e4479
[FIX] Hash Password Cmd Not Encoding Provided Salt (#999)
* using authelia hash-password if you provide a salt it doesn't encode it as a base64 string
* this causes invalid salts to be stored if a user manually provided one instead of reliance on the automatic generation
* additionally bumped the minimum required salt length to 8 as per reference spec
* additionally removed the maximum salt length as per reference spec (actually 2^32-1 per int32)
* see docs:
  * https://tools.ietf.org/html/draft-irtf-cfrg-argon2-10
  * https://github.com/P-H-C/phc-winner-argon2
  * https://github.com/P-H-C/phc-string-format
* encode all salts
* fix edge case of false positive in CheckPassword
* bump crypt version and fix tests
2020-05-14 15:55:03 +10:00
..
const.go [MISC] Refactor Authentication (#987) 2020-05-08 13:38:22 +10:00
file_user_provider_test.go [MISC] Refactor Authentication (#987) 2020-05-08 13:38:22 +10:00
file_user_provider.go [MISC] Refactor Authentication (#987) 2020-05-08 13:38:22 +10:00
ldap_connection_factory_mock.go [MISC] Update durations to notation format and housekeeping (#824) 2020-04-05 22:37:21 +10:00
ldap_connection_factory.go [CI] Add wsl linter (#980) 2020-05-05 21:35:32 +02:00
ldap_user_provider_test.go [FEATURE] Automatic Profile Refresh - LDAP (#912) 2020-05-04 21:39:25 +02:00
ldap_user_provider.go [CI] Add wsl linter (#980) 2020-05-05 21:35:32 +02:00
password_hash_test.go [FIX] Hash Password Cmd Not Encoding Provided Salt (#999) 2020-05-14 15:55:03 +10:00
password_hash.go [FIX] Hash Password Cmd Not Encoding Provided Salt (#999) 2020-05-14 15:55:03 +10:00
types.go [BUGFIX] [BREAKING] Set username retrieved from authentication backend in session. (#687) 2020-03-15 18:10:25 +11:00
user_provider.go Move source code into internal directory to follow standard project layout. 2019-11-17 16:30:33 +01:00