Re: [Django] #34017: Mention that when using Argon2PasswordHasher, this means Argon2id gets used

Fri, 16 Sep 2022 04:43:36 -0700 

#34017: Mention that when using Argon2PasswordHasher, this means Argon2id gets 
used
-------------------------------------+-------------------------------------
     Reporter:  David Schultz        |                    Owner:  nobody
         Type:                       |                   Status:  new
  Cleanup/optimization               |
    Component:  Documentation        |                  Version:  4.1
     Severity:  Normal               |               Resolution:
     Keywords:  Argon2 Argon2id      |             Triage Stage:  Accepted
  hashing algorithm password         |
  management                         |
    Has patch:  0                    |      Needs documentation:  0
  Needs tests:  0                    |  Patch needs improvement:  0
Easy pickings:  1                    |                    UI/UX:  0
-------------------------------------+-------------------------------------

Comment (by David Schultz):

 Currently I can't familiarize myself with the steps necessary to prepare
 such a patch, so I would kindly ask you or someone else to do this. The
 text which I would propose is this, building upon your suggestion:

 {{{#!diff
 diff --git a/docs/topics/auth/passwords.txt
 b/docs/topics/auth/passwords.txt
 index ???..??? ???
 --- a/docs/topics/auth/passwords.txt
 +++ b/docs/topics/auth/passwords.txt
 @@ -83,93 +83,95 @@ Using Argon2 with Django
  Argon2_ is the winner of the 2015 `Password Hashing Competition`_, a
 community
  organized open competition to select a next generation hashing algorithm.
 It's
  designed not to be easier to compute on custom hardware than it is to
 compute
 -on an ordinary CPU.
 +on an ordinary CPU. The default variant for the Argon2 password hasher is
 +Argon2id.

  Argon2_ is not the default for Django because it requires a third-party
  library. The Password Hashing Competition panel, however, recommends
 immediate
  use of Argon2 rather than the other algorithms supported by Django.

 -To use Argon2 as your default storage algorithm, do the following:
 +To use Argon2id as your default storage algorithm, do the following:
 }}}

-- 
Ticket URL: <https://code.djangoproject.com/ticket/34017#comment:3>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.

-- 
You received this message because you are subscribed to the Google Groups 
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/django-updates/01070183461c6767-ed01cde0-6b43-4434-a604-7ac65b323b8b-000000%40eu-central-1.amazonses.com.

Reply via email to