Add support for user password encryption algorithm selection
|Reported by:||Sam Reghenzi||Owned by:|
|Cc:||Triage Stage:||Design decision needed|
|Has patch:||yes||Needs documentation:||no|
|Needs tests:||yes||Patch needs improvement:||no|
User class in django/contrib/auth/models supports crypt algorithm in decoding password but not in the set_password method (see line 175). User password encryption algorithm should have a default but also but also configurable in project settings.
Project settings SECRET_KEY should be used in the encryption since all the data needed for brute force cracking are available in a db dump