Opened 9 months ago
Closed 4 months ago
#36226 closed Bug (fixed)
Only PBKDF2PasswordHasher supports str and bytes password
| Reported by: | Jason Held | Owned by: | Roelzkie |
|---|---|---|---|
| Component: | contrib.auth | Version: | 5.1 |
| Severity: | Normal | Keywords: | auth |
| Cc: | Roelzkie | Triage Stage: | Ready for checkin |
| Has patch: | yes | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
The other password hashers in their encode method all at some point call .encode on their password in some way. Thus, the other hasher classes, in the django source code, do not support the API and docstring of make_password.
This seems pretty easy to fix on the whole and I'd be happy to make a PR for it.
Change History (16)
comment:1 by , 8 months ago
| Triage Stage: | Unreviewed → Accepted |
|---|
comment:2 by , 8 months ago
| Owner: | set to |
|---|---|
| Status: | new → assigned |
Hi, I'm new to this community and find this a decent good first issue. I will try to fix this bug :)
comment:3 by , 8 months ago
| Has patch: | set |
|---|
follow-up: 5 comment:4 by , 8 months ago
Just finished a pr and all checks have passed.
https://github.com/django/django/pull/19231
follow-up: 6 comment:5 by , 8 months ago
Replying to Screamadelica:
Just finished a pr and all checks have passed.
https://github.com/django/django/pull/19231
It looks like you've submitted a PR, so I’ve set the "has patch" flag. Now, all that’s left is to wait for reviews from the fellows :)
comment:6 by , 8 months ago
Replying to Antoliny:
Replying to Screamadelica:
Just finished a pr and all checks have passed.
https://github.com/django/django/pull/19231
It looks like you've submitted a PR, so I’ve set the "has patch" flag. Now, all that’s left is to wait for reviews from the fellows :)
Thanks a lot, I will remember to change the flag after submitting PR later :)
follow-up: 8 comment:7 by , 7 months ago
| Patch needs improvement: | set |
|---|
comment:8 by , 4 months ago
Replying to Sarah Boyce:
Hi Sarah, What's the status of this ticket? Can you re-assign this ticket to me? It seems like the owner is not actively improving the PR anymore.
follow-up: 11 comment:9 by , 4 months ago
The prior owner closed their PR, so it's fair to set yourself in the owner field.
comment:11 by , 4 months ago
| Owner: | changed from to |
|---|
Replying to Jacob Walls:
The prior owner closed their PR, so it's fair to set yourself in the owner field.
Thanks for the confirmation, Jacob. I set myself as the owner of this ticket and have created a PR.
comment:12 by , 4 months ago
| Cc: | added |
|---|---|
| Patch needs improvement: | unset |
comment:13 by , 4 months ago
| Patch needs improvement: | set |
|---|
comment:14 by , 4 months ago
| Keywords: | auth added |
|---|---|
| Patch needs improvement: | unset |
comment:15 by , 4 months ago
| Triage Stage: | Accepted → Ready for checkin |
|---|
Replicated thank you! PRs welcome
tests/auth_tests/test_hashers.py