server/src/util/password.h

#pragma once

#define PASSWORD_PLAIN  '0'
#define PASSWORD_MD5 '1'
#define PASSWORD_BCRYPT '2' // not implemented
#define PASSWORD_APACHE_MD5 'a'
#define PASSWORD_SHA256 '5' // not implemented
#define PASSWORD_SHA512 '6' // not implemented
#define PASSWORD_DEFAULT PASSWORD_APACHE_MD5

#define VERIFY_OK 0 // password matches hash
#define VERIFY_FAIL 1 // password is wrong
#define VERIFY_UNKNOWN 2 // hashing algorithm not supported
int password_verify(const char *hash, const char *passwd);
const char * password_hash(const char *passwd, const char *salt, int algo);
add a new password module start adding password hashing logic (WIP) does not yet pass all tests 2016-01-12 23:52:30 +01:00			`#pragma once`

add the apache md5 implementation to valid password hash algorithms Conflicts: src/util/password.c src/util/password.h 2016-02-06 14:45:38 +01:00			`#define PASSWORD_PLAIN '0'`
			`#define PASSWORD_MD5 '1'`
			`#define PASSWORD_BCRYPT '2' // not implemented`
			`#define PASSWORD_APACHE_MD5 'a'`
			`#define PASSWORD_SHA256 '5' // not implemented`
			`#define PASSWORD_SHA512 '6' // not implemented`
use apache implementation by default 2016-02-06 15:09:36 +01:00			`#define PASSWORD_DEFAULT PASSWORD_APACHE_MD5`
as long as we use no encryption, all tests pass. 2016-01-13 16:16:02 +01:00
add a new password module start adding password hashing logic (WIP) does not yet pass all tests 2016-01-12 23:52:30 +01:00			`#define VERIFY_OK 0 // password matches hash`
			`#define VERIFY_FAIL 1 // password is wrong`
			`#define VERIFY_UNKNOWN 2 // hashing algorithm not supported`
implement MD5 crypted passwords as default 2016-01-14 15:49:09 +01:00			`int password_verify(const char hash, const char passwd);`
			`const char * password_hash(const char passwd, const char salt, int algo);`