feat(security): Implement Bcrypt for basic auth and deprecate SHA512
I've re-written the code for this several times before but always ended up not going through with it because a hashed Bcrypt string has dollar signs in it, which caused issues with the config due to environment variable support. I finally decided to go through with it by forcing users to base64 encode the bcrypt hash
This commit is contained in:
TwiN
2
vendor/modules.txt
vendored
2
vendor/modules.txt
vendored
@ -89,6 +89,8 @@ github.com/wcharczuk/go-chart/v2/roboto
|
||||
go.etcd.io/bbolt
|
||||
# golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9
|
||||
## explicit; go 1.11
|
||||
golang.org/x/crypto/bcrypt
|
||||
golang.org/x/crypto/blowfish
|
||||
golang.org/x/crypto/ed25519
|
||||
golang.org/x/crypto/ed25519/internal/edwards25519
|
||||
golang.org/x/crypto/pbkdf2
|
||||
|
||||
Reference in New Issue
Block a user