diff options
| author | zeripath <art27@cantab.net> | 2020-09-03 19:58:31 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-09-03 14:58:31 -0400 |
| commit | 5c0697ad1ecbd25ff245a93ea5af55c07817249e (patch) | |
| tree | 6b142324939f263e7e0b5eedf240c24d82480bec /custom | |
| parent | 8fa7a4b511e9318a50458488474ff4039a4f826a (diff) | |
| download | gitea-5c0697ad1ecbd25ff245a93ea5af55c07817249e.tar.gz gitea-5c0697ad1ecbd25ff245a93ea5af55c07817249e.zip | |
Use argon as default password hash algorithm (#12688)
* Restrict TLS connections to 1.2 minimum
* Set Argon2 as the default KDF
* Fix user.yml
* Remove TLS minversion changes
Signed-off-by: Andrew Thornton <art27@cantab.net>
* Add migration as per @techknowlogick
Signed-off-by: Andrew Thornton <art27@cantab.net>
* set the password algo in the fixtures
Signed-off-by: Andrew Thornton <art27@cantab.net>
* Remove the v148 migration - it needs recreate table to change the defaults
Signed-off-by: Andrew Thornton <art27@cantab.net>
Co-authored-by: Nadim Kobeissi <nadim@symbolic.software>
Diffstat (limited to 'custom')
| -rw-r--r-- | custom/conf/app.example.ini | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/custom/conf/app.example.ini b/custom/conf/app.example.ini index a5f81f83d3..bb65c4f08d 100644 --- a/custom/conf/app.example.ini +++ b/custom/conf/app.example.ini @@ -508,8 +508,8 @@ ONLY_ALLOW_PUSH_IF_GITEA_ENVIRONMENT_SET = true ;If left empty or no valid values are specified, the default is off (no checking) ;Classes include "lower,upper,digit,spec" PASSWORD_COMPLEXITY = off -; Password Hash algorithm, either "pbkdf2", "argon2", "scrypt" or "bcrypt" -PASSWORD_HASH_ALGO = pbkdf2 +; Password Hash algorithm, either "argon2", "pbkdf2", "scrypt" or "bcrypt" +PASSWORD_HASH_ALGO = argon2 ; Set false to allow JavaScript to read CSRF cookie CSRF_COOKIE_HTTP_ONLY = true |