delta/python-packages/passlib.git/docs, branch stable

bumped to 1.7.4, marking for release

2020-10-08T18:15:48+00:00

passlib.ext.django: Updated UTs to work with latest django release

2020-10-08T01:33:47+00:00

(should fix long-standing issue 98)

* test_ext_django:

    - Simplified "stock config" setup code.  It now gets it's "sha_rounds" value
      from the django source, so we don't have to manually update it every time
      django changes their default.  This should require less maintenance across
      minor django releases.  (Should fix issue 98, and prevent recurrence)

    - Updated tests to account for quirks in how encoded hashes are handled.
      Specifically: None, "", and invalid hashes all cause subtly different
      behaviors across django versions.  tests pass against django 1.8 - 3.1.

    - split "empty hash" test out from the loop it shared with "null hash" test,
      since the two behave differently.

* tox: expanded envlist to explicitly test a bunch more django versions
  (1.8 - 3.1); and remove some needless "django 2.x + py2" tests

* passlib.apps: reformatted django CryptContext declarations;
  added one for django 2.1 (which dropped "django_bcrypt" it's default list)

* passlib.ext.django:

    - added internal "quirks" helper as central place to track
      minor edge-case changes between django versions.

    - passlib_to_django() helper now falls back to searching hasher classes
      directly, even if patch isn't installed.  this allows it to work
      for django hashers that have been removed from django's default list.

bugfix: python2.6 compat fixes -- a few "{}" set constructors slipped in.

2020-10-08T01:20:39+00:00

passlib.context: now raises UnknownHashError() if hash can't be identified.

2020-10-07T18:46:57+00:00

this inherits from ValueError, and has same text, so backwards compatible.

docs: typo fixes

2020-10-06T16:32:56+00:00

bumped to 1.7.3; updated docs for release

2020-10-06T15:32:06+00:00

docs / sha crypt: commented out the "implicit_rounds" param in docs,

2020-10-06T15:31:41+00:00

it's not actually supported by using(), and isn't needed for users
(issue 121)

passlib.hash: added ldap_salted_sha256 & ldap_salted_512 (issue 124)

2020-10-06T01:14:41+00:00

passlib.handlers: cases where crypt() returns malformed hash

2020-10-06T01:14:03+00:00

now return a single unified InternalBackendError() class,
instead of AssertionError.

This change has a couple of parts:

* assert statements replaced with permanent checks,
  since crypt() is unpredictable enough that we need to have this always on,
  even if production runs code in "-O2" mode.

* added debug_only_repr() helper which allows including sensitive stuff
  like salts & hash digests within error tracebacks -- will only do so
  when global flag is enabled; and that's currently only set by unittest suite.

* added new InternalBackendError() exception class (a RuntimeError subclass);
  which is raised instead of an AssertionError.

passlib.handlers.bcrypt: safe_verify() calls should test for NotImplemented

2020-10-06T01:06:56+00:00

before boolean; bool(NotImplemented) is deprecated as of python 3.9
(fixes issue 125)