Changeset 8343
- Timestamp:
- 4 May 2012, 12:29:36 (13 years ago)
- Location:
- main/waeup.kofa/trunk/src/waeup/kofa
- Files:
-
- 2 edited
-
authentication.py (modified) (2 diffs)
-
userscontainer.txt (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
main/waeup.kofa/trunk/src/waeup/kofa/authentication.py
r7819 r8343 164 164 165 165 def setPassword(self, password): 166 passwordmanager = getUtility(IPasswordManager, 'S HA1')166 passwordmanager = getUtility(IPasswordManager, 'SSHA') 167 167 self.password = passwordmanager.encodePassword(password) 168 168 169 169 def checkPassword(self, password): 170 passwordmanager = getUtility(IPasswordManager, 'S HA1')170 passwordmanager = getUtility(IPasswordManager, 'SSHA') 171 171 return passwordmanager.checkPassword(self.password, password) 172 172 … … 334 334 if users is None: 335 335 return 336 role_id = event.role_id337 336 if event.principal_id not in users.keys(): 338 337 return -
main/waeup.kofa/trunk/src/waeup/kofa/userscontainer.txt
r7819 r8343 46 46 47 47 >>> bob.password 48 '...15aca8166' 49 50 Remark: that we can tell the last chars of the 'encrypted' password, 51 means, that the encryption is broken or at least waeker as it should 52 be. 53 54 XXX: We could provide a stronger (correct) SHA encryption. 48 '{SSHA}...' 55 49 56 50 We can delete users:
Note: See TracChangeset for help on using the changeset viewer.
