summaryrefslogtreecommitdiff
path: root/django/contrib/auth/hashers.py
AgeCommit message (Expand)Author
2018-05-17Increased the default PBKDF2 iterations for Django 2.2.Tim Graham
2018-05-13Increased the default PBKDF2 iterations for Django 2.1.Tim Graham
2018-03-22Fixed #28718 -- Allowed user to request a password reset if their password do...Tim Graham
2018-02-26Fixed #29141 -- Corrected BCryptPasswordHasher's docstring about truncation.Tim Graham
2018-02-01Refs #27795 -- Replaced force_text/bytes() with decode()/encode() in password...Jon Dufresne
2018-01-03Fixed #28982 -- Simplified code with and/or.Дилян Палаузов
2017-02-07Converted usage of ugettext* functions to their gettext* aliasesClaude Paroz
2017-02-04Refs #27656 -- Updated django.contrib docstring verb style according to PEP 257.Anton Samarchyan
2017-01-25Refs #23919 -- Removed misc Python 2/3 references.Tim Graham
2017-01-20Refs #23919 -- Removed unneeded force_str callsClaude Paroz
2017-01-19Refs #23919 -- Stopped inheriting from object to define new style classes.Simon Charette
2017-01-18Refs #23919 -- Stopped using django.utils.lru_cache().Aymeric Augustin
2017-01-18Refs #23919 -- Removed encoding preambles and future importsClaude Paroz
2017-01-17Increased the default PBKDF2 iterations for the 1.11 release cycle.Tim Graham
2016-08-04Fixed #27010 -- Made Argon2PasswordHasher decode with ASCII.Tim Graham
2016-05-20Increased the default PBKDF2 iterations.Tim Graham
2016-04-25Refs #26033 -- Added password hasher support for Argon2 v1.3.Bas Westerbaan
2016-03-22Fixed #26395 -- Skipped the CryptPasswordHasher tests on platforms with a dum...Tim Graham
2016-03-08Fixed #26033 -- Added Argon2 password hasher.Bas Westerbaan
2016-03-01Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login.Florian Apolloner
2016-02-11Updated some comments for BCryptSHA256PasswordHasher.Tim Graham
2016-01-09Fixed a typo in BCryptPasswordHasher docstringMatt Robenolt
2016-01-02Fixed #26016 -- Restored contrib.auth hashers compatibility with py-bcrypt.Tim Graham
2015-09-23Increased the default PBKDF2 iterations for the 1.10 release cycle.Tim Graham
2015-07-13Explicitly passed rounds as rounds to bcrypt.gensalt()Curtis Maloney
2015-03-30Fixed #24115 -- Allowed bcrypt hashers to upgrade passwords on rounds change.Tim Graham
2015-02-20Removed reference to iteration count in the PBKDF2 hasher docstring.Simon Charette
2015-02-20Fixed PBKDF2PasswordHasher comments to reflect reality.Frank Wiles
2015-02-06Sorted imports with isort; refs #23860.Tim Graham
2015-01-16Increased the default PBKDF2 iterations.Tim Graham
2014-12-24Fixed #20349 -- Moved setting_changed signal to django.core.signals.Collin Anderson
2014-11-19Simplified caching of password hashers.Aymeric Augustin
2014-07-11Bump the default iterations for PBKDF2.Alex Gaynor
2014-03-03Fixed many typos in comments and docstrings.Rodolfo Carvalho
2014-02-08Fixed #21674 -- Deprecated the import_by_path() function in favor of import_s...Berker Peksag
2013-11-30Fixed #21535 -- Fixed password hash iteration upgrade.Tim Graham
2013-11-09Fixed #21398 -- Fixed BCryptSHA256PasswordHasher with py-bcrypt and Python 3.Tim Graham
2013-10-21Force update of the password on iteration count changes.Florian Apolloner
2013-10-10Whitespace cleanup.Tim Graham
2013-09-24Revert "Ensure that passwords are never long enough for a DoS."Florian Apolloner
2013-09-19Increase default PBKDF2 iterationsPaul McMillan
2013-09-15Ensure that passwords are never long enough for a DoS.Russell Keith-Magee
2013-09-10Fixed #20841 -- Added messages to NotImplementedErrorsGregor MacGregor
2013-08-29Fixed #20989 -- Removed explicit list comprehension inside dict() and tuple()Tim Graham
2013-08-04Fixed a number of lint warnings, particularly around unused variables.Alex Gaynor
2013-08-04Deprecated SortedDict (replaced with collections.OrderedDict)Curtis Maloney
2013-07-29Deprecated django.utils.importlibClaude Paroz
2013-07-03Fixed #20675 -- `check_password` should work when no password is specified.Simon Charette
2013-06-18Fixed #20079 -- Improve security of password reset tokensErik Romijn
2013-06-18Fixed #20593 -- Allow blank passwords in check_password() and set_password()Erik Romijn