revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-11-27 17:22:42 +01:00
Code Issues Releases Wiki Activity
phorge-phorge/src/infrastructure/util
History
Wenyu Zhang ba956711a5 Change password_hash() algorithm from CRYPT_BLOWFISH to PASSWORD_BCRYPT. 
Summary:
PHP 5.5 specifies constant PASSWORD_BCRYPT should be used in password_hash()
instead of CRYPT_BLOWFISH. Using CRYPT_BLOWFISH is not supported in either PHP
or HHVM. This constant breaks Username / Password authentication.

Test Plan:
Login using Username/Password with bcrypt hash. Before applying the patch,
No matter what password entered, it will always fail authentication. After this
patch, user should be able to login with bcrypt hash.

Reviewers: btrahan, epriestley, #blessed_reviewers

Reviewed By: epriestley, #blessed_reviewers

Subscribers: epriestley, Korvin

Differential Revision: https://secure.phabricator.com/D8808
2014-04-18 13:38:36 -07:00
..
__tests__ Forbid "." and ".." in slugs 2014-03-14 08:54:26 -07:00
password Change password_hash() algorithm from CRYPT_BLOWFISH to PASSWORD_BCRYPT. 2014-04-18 13:38:36 -07:00
PhabricatorGlobalLock.php Reduce wait_timeout to max. allowed value 2013-04-05 22:42:27 -07:00
PhabricatorHash.php Implementation of VCS passwords against user. 2013-11-01 08:34:11 -07:00
PhabricatorSlug.php Forbid "." and ".." in slugs 2014-03-14 08:54:26 -07:00
PhabricatorSSHKeyGenerator.php Add a "Generate Keypair" option on the SSH Keys panel 2014-03-12 18:17:11 -07:00