couchdb-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (COUCHDB-1780) Upgrade users password hash on login, not password change
Date Sun, 23 Feb 2014 18:01:19 GMT

    [ https://issues.apache.org/jira/browse/COUCHDB-1780?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13909822#comment-13909822
] 

ASF subversion and git services commented on COUCHDB-1780:
----------------------------------------------------------

Commit 348889380c3b98d7f1a6c8963fc2eb4ee08c1db7 in couchdb's branch refs/heads/master from
[~klaus_trainer]
[ https://git-wip-us.apache.org/repos/asf?p=couchdb.git;h=3488893 ]

Upgrade password hashes on authentication

We now upgrade user docs to the new PBKDF2 password scheme on successful
authentication if the password hash is still from the old days where we
only used plain SHA-1 for hashing salted passwords.

Closes COUCHDB-1780.


> Upgrade users password hash on login, not password change
> ---------------------------------------------------------
>
>                 Key: COUCHDB-1780
>                 URL: https://issues.apache.org/jira/browse/COUCHDB-1780
>             Project: CouchDB
>          Issue Type: Improvement
>            Reporter: Robert Newson
>             Fix For: 1.7.0
>
>
> We can upgrade users hashes to PBKDF2 on login, we don't need to wait for a password
change.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

Mime
View raw message