Bug 28772: Add a warning about hash_password usage in updatedatabase.pl
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io> Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com> Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl> Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>
This commit is contained in:
parent
2acf4ff1b0
commit
b80923d233
1 changed files with 7 additions and 1 deletions
|
|
@ -51,9 +51,15 @@ user passwords.
|
||||||
|
|
||||||
my $hash = Koha::AuthUtils::hash_password($password, $settings);
|
my $hash = Koha::AuthUtils::hash_password($password, $settings);
|
||||||
|
|
||||||
|
Hash I<$password> using Bcrypt. Accepts an extra I<$settings> parameter for salt.
|
||||||
|
If I<$settings> is not passed, a new salt is generated.
|
||||||
|
|
||||||
|
WARNING: If this method implementation is changed in the future, as of
|
||||||
|
bug 28772 there's at least one DBRev that uses this code and should
|
||||||
|
be taken care of.
|
||||||
|
|
||||||
=cut
|
=cut
|
||||||
|
|
||||||
# Using Bcrypt method for hashing. This can be changed to something else in future, if needed.
|
|
||||||
sub hash_password {
|
sub hash_password {
|
||||||
my $password = shift;
|
my $password = shift;
|
||||||
$password = Encode::encode( 'UTF-8', $password )
|
$password = Encode::encode( 'UTF-8', $password )
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue