Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Handle one time password and very large passwords #33110

Merged
merged 3 commits into from
Jul 8, 2022
Merged

Handle one time password and very large passwords #33110

merged 3 commits into from
Jul 8, 2022

Commits on Jul 5, 2022

  1. Handle one time passwords 

    This adds an option to disable storing passwords in the database. This
might be desirable when using single use token as passwords or very
large passwords.

Signed-off-by: Carl Schwan <carl@carlschwan.eu>
    @CarlSchwan
    CarlSchwan committed Jul 5, 2022
    Configuration menu
    Copy the full SHA
    cdf3b60 View commit details
    Browse the repository at this point in the history

  2. Handler large passwords 

    For passwords bigger than 250 characters, use a bigger key since the
performance impact is minor (around one second to encrypt the password).

For passwords bigger than 470 characters, give up earlier and throw
exeception recommanding admin to either enable the previously enabled
configuration or use smaller passwords.

Signed-off-by: Carl Schwan <carl@carlschwan.eu>
    @CarlSchwan
    CarlSchwan committed Jul 5, 2022
    Configuration menu
    Copy the full SHA
    1c23c02 View commit details
    Browse the repository at this point in the history

  3. Don't allow setting password bigger than 469 characters 

    Signed-off-by: Carl Schwan <carl@carlschwan.eu>
    @CarlSchwan
    CarlSchwan committed Jul 5, 2022
    Configuration menu
    Copy the full SHA
    f99a06c View commit details
    Browse the repository at this point in the history