#19562 closed Cleanup/optimization (fixed)
Documentation: How Django stores passwords out of date
Reported by: | Owned by: | Preston Holmes | |
---|---|---|---|
Component: | Documentation | Version: | dev |
Severity: | Normal | Keywords: | |
Cc: | Triage Stage: | Accepted | |
Has patch: | no | Needs documentation: | no |
Needs tests: | no | Patch needs improvement: | no |
Easy pickings: | no | UI/UX: | no |
Description
In "Password management in Django" documentation page https://docs.djangoproject.com/en/1.5/topics/auth/passwords/ , section "How Django stores passwords" it says: "The password attribute of a User object is a string in this format:
algorithm$hash"
This is out of date (since v1.4?) It should say something like:
"The password attribute of a User object is a string in this format:
algorithm$iterations$salt$hash" , where iterations is the work factor.
Thanks
Change History (4)
comment:1 by , 12 years ago
Component: | contrib.auth → Documentation |
---|---|
Owner: | changed from | to
Status: | new → assigned |
Triage Stage: | Unreviewed → Accepted |
Version: | 1.5-alpha-1 → master |
comment:2 by , 12 years ago
Resolution: | → fixed |
---|---|
Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
Looks like this was missed in the 1.4 timeframe and wasn't caught during the recent refactor either.