TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-04-24 18:31:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,618 Commits 173 Branches 1,935 Tags
Commit Graph

6 Commits

Author SHA1 Message Date
Miro Trisc
e4c12864e5
feat(crypto): support md5 salted for imported password hashes (#9596) 
# Which Problems Are Solved

Allow verification of imported salted passwords hashed with plain md5.

# How the Problems Are Solved

- Upgrade passwap to
[v0.7.0](https://github.com/zitadel/passwap/releases/tag/v0.7.0)
- Add md5salted as a new verifier option in `defaults.yaml`

# Additional Changes

- go version and libraries updated  (required by passkey v0.7.0)
- secrets.md verifiers updated  
- configuration verifiers updated 
- added MD5salted and missing MD5Plain to test cases
 2025-03-21 12:25:52 +00:00
Tim Möhlmann
2089992d75
feat(crypto): use passwap for machine and app secrets (#7657) 
* feat(crypto): use passwap for machine and app secrets

* fix command package tests

* add hash generator command test

* naming convention, fix query tests

* rename PasswordHasher and cleanup start commands

* add reducer tests

* fix intergration tests, cleanup old config

* add app secret unit tests

* solve setup panics

* fix push of updated events

* add missing event translations

* update documentation

* solve linter errors

* remove nolint:SA1019 as it doesn't seem to help anyway

* add nolint to deprecated filter usage

* update users migration version

* remove unused ClientSecret from APIConfigChangedEvent

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2024-04-05 09:35:49 +00:00
Tim Möhlmann
1adfca9d28
fix(crypto): allow parsing of cost int from env string (#7061) 
fic(crypto): allow parsing of cost int from env string
 2023-12-15 11:16:05 +00:00
Tim Möhlmann
0af1c65c4c
fix: allow unused keys in hasher config (#6724) 2023-10-13 13:11:20 +00:00
Tim Möhlmann
4d09409328
feat(crypto): add pbkdf2 support (#6303) 
This change brings pbkdf2 support for password hashing and verification.
 2023-08-02 11:27:18 +00:00
Tim Möhlmann
4589ddad4a
feat: integrate passwap for human user password hashing (#6196) 
* feat: use passwap for human user passwords

* fix tests

* passwap config

* add the event mapper

* cleanup query side and api

* solve linting errors

* regression test

* try to fix linter errors again

* pass systemdefaults into externalConfigChange migration

* fix: user password set in auth view

* pin passwap v0.2.0

* v2: validate hashed password hash based on prefix

* resolve remaining comments

* add error tag and translation for unsupported hash encoding

* fix unit test

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-07-14 09:49:57 +03:00