core.crypto.password

Functions

`hash_password`(→ str)	The default password hashing algorithm used by onegov.
`verify_password`(→ bool)	Compares a password to a hash and returns true if they match according

Module Contents

core.crypto.password.hash_password(password: str) → str[source]

The default password hashing algorithm used by onegov.

Over time the underlying algorithm may change, at which point verify_password() must issue a deprecation warning when using the old algorithm.

Note that no salt is being passed, because the algorithm we use now (bcrypt), as well as the algorithm that we might use in the future (scrypt), generate their own salt automatically by default.

The salt is then stored in the resulting hash. That means that we do not pass or store a salt ourselves.

core.crypto.password.verify_password(password: str, hash: str) → bool[source]: Compares a password to a hash and returns true if they match according to the hashing algorithm used.