forgejo/routers/web/user/setting
zeripath c702e7995d
Provide the ability to set password hash algorithm parameters (#22942) (#22943)
Backport #22942

This PR refactors and improves the password hashing code within gitea
and makes it possible for server administrators to set the password
hashing parameters

In addition it takes the opportunity to adjust the settings for `pbkdf2`
in order to make the hashing a little stronger.

The majority of this work was inspired by PR #14751 and I would like to
thank @boppy for their work on this.

Thanks to @gusted for the suggestion to adjust the `pbkdf2` hashing
parameters.

Close #14751

---------

Signed-off-by: Andrew Thornton <art27@cantab.net>
Co-authored-by: delvh <dev.lh@web.de>
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
2023-02-19 15:35:52 +08:00
..
security Move some files into models' sub packages (#20262) 2022-08-25 10:31:57 +08:00
account.go Provide the ability to set password hash algorithm parameters (#22942) (#22943) 2023-02-19 15:35:52 +08:00
account_test.go Update HTTP status codes to modern codes (#18063) 2022-03-23 12:54:07 +08:00
adopt.go Move some files into models' sub packages (#20262) 2022-08-25 10:31:57 +08:00
applications.go Move some files into models' sub packages (#20262) 2022-08-25 10:31:57 +08:00
keys.go Fix key signature error page (#22229) (#22230) 2022-12-30 12:53:23 +08:00
main_test.go Use a struct as test options (#19393) 2022-04-14 21:58:21 +08:00
oauth2.go Allow creation of OAuth2 applications for orgs (#18084) 2022-10-09 20:07:41 +08:00
oauth2_common.go Record OAuth client type at registration (#21316) 2022-10-24 15:59:24 +08:00
profile.go Replace all instances of fmt.Errorf(%v) with fmt.Errorf(%w) (#21551) 2022-10-24 20:29:17 +01:00