forgejo-federation/routers/web/auth
zeripath 61b89747ed
Provide the ability to set password hash algorithm parameters (#22942)
This PR refactors and improves the password hashing code within gitea
and makes it possible for server administrators to set the password
hashing parameters

In addition it takes the opportunity to adjust the settings for `pbkdf2`
in order to make the hashing a little stronger.

The majority of this work was inspired by PR #14751 and I would like to
thank @boppy for their work on this.

Thanks to @gusted for the suggestion to adjust the `pbkdf2` hashing
parameters.

Close #14751

---------

Signed-off-by: Andrew Thornton <art27@cantab.net>
Co-authored-by: delvh <dev.lh@web.de>
Co-authored-by: John Olheiser <john.olheiser@gmail.com>
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
2023-02-19 15:35:20 +08:00
..
2fa.go refactor some functions to support ctx as first parameter (#21878) 2022-12-03 10:48:26 +08:00
auth.go Provide the ability to set password hash algorithm parameters (#22942) 2023-02-19 15:35:20 +08:00
linkaccount.go Add context cache as a request level cache (#22294) 2023-02-15 21:37:34 +08:00
main_test.go Implement FSFE REUSE for golang files (#21840) 2022-11-27 18:20:29 +00:00
oauth.go Add context cache as a request level cache (#22294) 2023-02-15 21:37:34 +08:00
oauth_test.go Add context cache as a request level cache (#22294) 2023-02-15 21:37:34 +08:00
openid.go Add context cache as a request level cache (#22294) 2023-02-15 21:37:34 +08:00
password.go Provide the ability to set password hash algorithm parameters (#22942) 2023-02-19 15:35:20 +08:00
webauthn.go Replace deprecated Webauthn library (#22400) 2023-01-11 21:51:00 -05:00