summaryrefslogtreecommitdiff
path: root/docs
Commit message (Collapse)AuthorAgeFilesLines
* removed some unused files, tweaked some internal commentsEli Collins2012-06-271-53/+0
|
* various minor updates to documentation & code commentsEli Collins2012-06-273-13/+29
|
* md5_crypt deprecated by author, updated docs accordinglyEli Collins2012-06-272-11/+25
|
* reworked platform_crypt_support test to be more granular, updated to account ↵Eli Collins2012-06-271-2/+2
| | | | for FreeBSD 8.3+ supporting SHA512-Crypt
* pip requirements file for building docs1.6Eli Collins2012-05-171-0/+1
|
* minor documentation updates - typo in changes, better listing of ident ↵Eli Collins2012-05-171-3/+3
| | | | values for bcrypt
* minor documentation updatesEli Collins2012-05-082-18/+26
|
* updated index entriesEli Collins2012-05-0225-28/+57
|
* forgot to document the relaxed=True keyword, and the strict-parameters policy.Eli Collins2012-05-021-8/+10
|
* last minute documentation updatesEli Collins2012-05-013-7/+11
|
* added environment variables to doc indexEli Collins2012-05-013-0/+7
|
* loads of documentation updatesEli Collins2012-05-0120-106/+113
|
* moved is_ascii_codec() helper to utilsEli Collins2012-05-011-0/+1
|
* updated various bit of documentation; made 1.6 changelog presentableEli Collins2012-04-308-14/+29
|
* removed annoying builtin-bcrypt warning, decreased rounds on some test ↵Eli Collins2012-04-301-5/+4
| | | | vectors for speed
* mass rename of old alias for PasswordHash interfaceEli Collins2012-04-272-2/+2
|
* updated front matter and other documentationEli Collins2012-04-2713-242/+362
|
* merged rewrite of CryptContext documentation - (near-) full tutorial and ↵Eli Collins2012-04-279-651/+977
| | | | reference
* merging rewrite of all hash documentation, and password hash apiEli Collins2012-04-2742-1359/+1485
| | | | | | | * password hash api rewritten to center around PasswordHash abstract class * extended walkthrough and documentation for PasswordHash interface * pared down the per-hash examples, added links to PasswordHash * updates docs and warnings
* near complete rewrite of django plugin, now making publicEli Collins2012-04-273-111/+127
| | | | | | | | | | | - monkeypatching now formalized w/ a patch manager, and should be *much* more resilient. - patch states reduced greatly, simplified code and tests - now handles django 1.4 correctly - patches hashers module as well (had to write some new wrappers) - added experimental methods GenericHandler.parsehash() to back our wrapper of Hasher.safe_summary() - XXX: doesn't currently import current HASHER state, - XXX: can't import hashers into passlib either -- though left initial notes on this
* added support for the new Django 1.4 hash formatsEli Collins2012-04-271-11/+39
| | | | | | - updated salt handling of the existing django hashes, in a way which should be backwards compatible w/ django 1.0 - UTs now test Django hasher output against passlib handlers (reverse was already being done) - refactor of fuzz testing to reuse some of the methods.
* added deprecated="auto" support to CryptContextEli Collins2012-04-271-0/+3
|
* stripping out "passprep" feature - code was working, but the api isn't read ↵Eli Collins2012-04-271-36/+0
| | | | for release. will adjust issue 24.
* sped up pbkdf2 implementation by 60% or so - upped the rounds for all pbkdf2 ↵Eli Collins2012-04-191-0/+2
| | | | hashes
* disabling saslprep() support under Jython - it lacks the stringprep moduleEli Collins2012-04-171-0/+5
|
* a bunch of bugfixes found during unittestingEli Collins2012-04-171-1/+1
| | | | | | | | | | * bsdi_crypt apparently available on openbsd 4.9 * typo fixes * ConfigParser apparently only uses OrderedDict for >= PY27, adjusted CryptContext test accordingly * fixed test that depended on sha256_crypt.default_rounds * handle os_crypt backend w/ no fallback (bcrypt) * let _norm_rounds accept longs
* CryptPolicy deprecation, part 5 - updated docs, changelog, benchmark scriptEli Collins2012-04-175-88/+113
|
* updated passlib.apache module's api - more flexible to use, changed some ↵Eli Collins2012-04-171-13/+20
| | | | ambiguous method names
* issue warning if app requests even bsdi_crypt roundsEli Collins2012-04-131-10/+17
|
* work on des_crypt familyEli Collins2012-04-132-2/+2
| | | | | * cleaned up source of des_crypt variants and DES util functions * DES utils functions now have tighter input validation, full UT coverage
* clarify behavior for secret=None and hash=NoneEli Collins2012-04-111-9/+10
| | | | | | | | | | | | | | | | | | | | | | | * passing a non-string secret or non-string hash to any CryptContext or handler method will now reliably result in a TypeError. previously, passing hash=None to many handler identify() and verify() methods would return False, while others would raise a TypeError. other handler methods would alternately throw ValueError or TypeError when passed a value that wasn't unicode or bytes. the various CryptContext methods also behaved inconsistently, depending on the behavior of the underlying handler. all of these behaviors are gone, they should all raise the same TypeError. * redid many of the from_string() methods to verify the hash type. * moved secret type & size validation to GenericHandler's encrypt/genhash/verify methods. this cheaply made the secret validation global to all hashes, and lets _calc_digest() implementations trust that the secret is valid. * updated the CryptContext and handler unittests to verify the above behavior is adhered to.
* ldap salted digest improvementsEli Collins2012-04-091-3/+12
| | | | | | * support variable salt size of 4-16 bytes [issue 30]. * throw correct error when invalid base64 encoding is encountered. * added some test vectors for the above.
* *all* hashes now throw PasswordSizeError if password is larger than 4096 ↵Eli Collins2012-04-091-0/+1
| | | | chars; to prevent DOS issues.
* removed default policy file & objectEli Collins2012-04-091-8/+0
| | | | | | | was using default policy to store recommended defaults for hashes, but it only affects CryptContext objects, and users seem to frequent using the handler objects directly - so going to store recommended defaults in the handler from now on.
* bcrypt workEli Collins2012-03-121-0/+1
| | | | | | | * added code to shoehorn $2$-support wrapper for bcryptor backend * added PasslibSecurityWarning when builtin backend is enabled (still considered whether it should be enabled by default) * py3 compat fix for repair_unused
* updated passlib.ext.django; made some notes about django 1.4Eli Collins2012-03-121-32/+33
| | | | (may not support django 1.4 until passlib 1.7)
* doc tweaksEli Collins2012-03-124-7/+19
|
* updated test support & py3 compat code from an external libraryEli Collins2012-03-121-9/+9
| | | | | | | | | | | | | | | | passlib.tests ------------- * deprecated support for unittest 1... accumulated too many backports, planning to require unittest2 in next release. * case_prefix renamed to shortDescription * test case now archives & clears warning registry state in addition to warning filter state passlib.utils.compat -------------------- * a bunch of the bytes-related functions were renamed for clarity * NativeStringIO alias added * trange alias merged into irange
* added some notesEli Collins2012-03-101-18/+0
|
* doc tweaksEli Collins2012-03-103-16/+14
|
* various bcrypt improvementsEli Collins2012-03-101-3/+33
| | | | | | | | | | | | * studied crypt_blowfish's 8bit bug - verified none of passlib's backends were affected - added recognition (but not support) for crypt_blowfish's $2x$ hash prefix - added support for crypt_blowfish's $2y$ hash prefix - note in docs about Passlib's current handling of crypt_blowfish 8bit issues. * refactored bcrypt's salt-unused-bits repair code into Base64Engine.repair_unused(), making the code cleaner and more isolated. a bunch more tests. * added bcrypt64 (bcrypt-base64 variant) to utils * added LazyBase64Engine to reduce memory / startup time
* cleanup of scram hash; improved norm_digest_name() and moved it to utils.pbkdf2Eli Collins2012-03-102-16/+46
|
* did rewrite of unix_fallback as unix_disabled; unix_fallback is now deprecatedEli Collins2012-03-104-57/+50
|
* added Window's DCC hashes (aka mscache / mscash) version 1 & 2Eli Collins2012-03-103-2/+206
|
* renamed nthash -> bsd_nthash; added real nthash implementedEli Collins2012-03-104-33/+58
| | | | | | | after some thought, realized the 'nthash' name should implement the raw hash. since bsd_nthash was very rarely used, it shouldn't present backwards incompatibility issues at this point to go ahead and rename it.
* added support for lmhashEli Collins2012-03-102-0/+164
|
* added support for Cisco PIX & Type 7 hashesEli Collins2012-03-104-6/+315
| | | | | | | | * Cisco Type 5 appears to be same as md5_crypt * added requires_user=False support to HandlerCase * added more through salt-generation test (since cisco_pix has only 4 bits of salt) * added HandlerCase test to ensure user is used as salt
* added mssql 2000/2005 hashes; enhanced HandlerCase's password case sensitive ↵Eli Collins2012-03-103-0/+193
| | | | test
* utils.handlers framework reworked; removed a bunch of boilerplate codeEli Collins2012-03-091-5/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | * StaticHandler is now subclass of GenericHandler - _calc_checksum() should be implemented instead of encrypt(). (compatibility stub added so old code should continue to work) - _norm_hash() no longer needs to handle ->unicode conversion - default from_string() contains a bunch of features, including stripping a known prefix, etc. * context kwds now pulled into constructor, so GenericHandler supports context kwds properly; HasUserContext mixin added to support common 'user' context kwd * identify_regexp & identify_prefix removed, functionality rolled into default GenericHandler.identify() implementation. - default identify checks _hash_regex as potential way to identify hashes * HasStubChecksum removed, functionality rolled into GenericHandler * HasRawChecksum now just sets a flag, functionality moved into GenericHandler * HasManyIdents._parse_ident() helper added to valid & split identifier from hashes. * GenericHandler._norm_checksum() is now strict about unicode / bytes
* base HandlerCase class reworkedEli Collins2012-03-091-1/+1
| | | | | | | | | | | | * reworked warning-matching code into assertWarningList() method * reorganized HandlerCase hash tests based on cross-cutting topic, not per-function; this combined many tests together to eliminate redundant setup * added test of reported rounds limits * added better fuzz testing - tests random passwords & options using encrypt(), and verifies against any all available backends * added flags to properly support 'disabled' handlers, and other border cases. * added tests for password & user case-sensitivity * restores warning filters after every test
View Lorry Controller Status