Return-Path: X-Original-To: apmail-couchdb-user-archive@www.apache.org Delivered-To: apmail-couchdb-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 113A19A51 for ; Fri, 8 Jun 2012 13:24:03 +0000 (UTC) Received: (qmail 81021 invoked by uid 500); 8 Jun 2012 13:24:01 -0000 Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org Received: (qmail 80914 invoked by uid 500); 8 Jun 2012 13:24:01 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 80906 invoked by uid 99); 8 Jun 2012 13:24:01 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Jun 2012 13:24:01 +0000 X-ASF-Spam-Status: No, hits=1.5 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of ziggythehamster@gmail.com designates 209.85.214.52 as permitted sender) Received: from [209.85.214.52] (HELO mail-bk0-f52.google.com) (209.85.214.52) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Jun 2012 13:23:57 +0000 Received: by bkcjc3 with SMTP id jc3so2102337bkc.11 for ; Fri, 08 Jun 2012 06:23:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=wFar2Eps5/zQRoDSb+KEq233G+Hr0j4bR3yqKw6XEPE=; b=PAg50LMZ2fNyxJnGHkiXCQF9fS28ARHWCHqXm7p/4vCd44ZgJVmP5HP21rZJoQXkE9 Oo2+3fDVfbdoWhihrIoon3CWcQ+txz5qhK169PkqRPVlJ4K8SUCQagSJ5DzdI86NxUsh x0qv+KBiqWweZYAcLo3BU+umuGNbPyC3Aytcepm+qQOmYI+1X7H8FcG4eRLCo5b+9lyh EbuWZlb1aBAwQRaWQaoWXjgbeVsTEzGRtwE2OoY670Ci23wTNvmmcMLL1+iYUD32MUh0 vCH+UvuXMGdFpPrmMq1M/zl4IU7o/WmnLv6LgPxN8NGefCqT+YvcV2wwaDMXI61NpVO8 togQ== MIME-Version: 1.0 Received: by 10.204.156.77 with SMTP id v13mr4591938bkw.59.1339161815593; Fri, 08 Jun 2012 06:23:35 -0700 (PDT) Sender: ziggythehamster@gmail.com Received: by 10.205.39.130 with HTTP; Fri, 8 Jun 2012 06:23:35 -0700 (PDT) Received: by 10.205.39.130 with HTTP; Fri, 8 Jun 2012 06:23:35 -0700 (PDT) In-Reply-To: References: <271AB806-4C79-4371-9BDE-12EF2C2D885C@sri.com> Date: Fri, 8 Jun 2012 08:23:35 -0500 X-Google-Sender-Auth: Dj1XPbCjYVE0OL7zZYaAKafYGEs Message-ID: Subject: Re: Migrate htpasswd users to _users? From: Keith Gable To: user@couchdb.apache.org Content-Type: multipart/alternative; boundary=0015175cfb2e50b37a04c1f5e89c X-Virus-Checked: Checked by ClamAV on apache.org --0015175cfb2e50b37a04c1f5e89c Content-Type: text/plain; charset=ISO-8859-1 Well what I'm trying to say is crypt() won't work. You'll have to use the APR-specific crypt() or a clone implementation. I remember seeing one in Python on the nginx wiki. On Jun 7, 2012 10:48 PM, "Jim Klo" wrote: > As we're using whatever the default is on Ubuntu (which is crypt() per > manpage http://linux.die.net/man/1/htpasswd) > > Is there an existing authentication handler plugin that uses crypt? While > I'm not even close to even call myself an Erlang noob - from here it > doesn't seem like it would too difficult to alter > https://github.com/apache/couchdb/blob/1.2.x/src/couchdb/couch_httpd_auth.erlbut have no idea where to start on modifying as a plugin. > > Worst case I just make all my users reset their passwords. > > - Jim > > > Sent from my iPad > > On Jun 7, 2012, at 7:12 PM, "Keith Gable" > wrote: > > > htpasswd supports several different hash schemes. $apr1$ is the default > and > > isn't very portable (though is supported by nginx) because it's not > exactly > > MD5 as generated by crypt(). > > On Jun 7, 2012 4:15 PM, "Jim Klo" wrote: > > > >> Wondering if there is a way to easily migrate a flat file of htpasswd > >> users into couchdb _users? > >> > >> htpasswd typically uses crypt() which I think i based off a MD5, and > >> couchdb uses SHA1. > >> > >> So essentially is there a stable authentication handler out there that > >> replicates htpasswd? > >> > >> Thanks, > >> > >> - Jim > >> > >> * > >> Jim Klo > >> Senior Software Engineer > >> Center for Software Engineering > >> SRI International > >> * > >> > >> > --0015175cfb2e50b37a04c1f5e89c--