delta/python-packages/passlib.git/passlib/ext/django, branch ironpython-support-dev

CryptPolicy deprecated, part2 - updated rest of library to use CryptContext directly

2012-04-17T19:34:14+00:00

ran full UTs, found and fixed a few bugs introduced in last few commits.

2012-04-11T23:31:37+00:00

clarify behavior for secret=None and hash=None

2012-04-11T21:49:09+00:00

* passing a non-string secret or non-string hash to any
  CryptContext or handler method will now reliably result
  in a TypeError.

  previously, passing hash=None to many handler identify() and verify()
  methods would return False, while others would raise a TypeError.
  other handler methods would alternately throw ValueError or TypeError
  when passed a value that wasn't unicode or bytes.
  the various CryptContext methods also behaved inconsistently,
  depending on the behavior of the underlying handler.

  all of these behaviors are gone, they should all raise the same TypeError.

* redid many of the from_string() methods to verify the hash type.

* moved secret type & size validation to GenericHandler's encrypt/genhash/verify methods.
  this cheaply made the secret validation global to all hashes, and lets
  _calc_digest() implementations trust that the secret is valid.

* updated the CryptContext and handler unittests to verify the above behavior is adhered to.

updated passlib.ext.django; made some notes about django 1.4

2012-03-13T02:41:12+00:00

(may not support django 1.4 until passlib 1.7)

split exceptions/warnings to separate module; added some additional warning classes to make filtering easier

2012-01-19T01:36:38+00:00

import cleanups

2012-01-18T22:51:32+00:00

* moved bytes compat functions from utils to utils.compat
  (bord, bjoin, bjoin_ints, bjoin_elems, ujoin)
* renamed bord -> belem_ord for clarify
* a bunch of to_native_str() always use ascii, and
  have fixed input types (always bytes or always unicode).
  these don't need overhead of to_native_str(), so replaced
  those calls with two new funcs: compat.bascii_to_str() /
  compat.uascii_to_str()
* cleaned up a lot of imports from utils/utils.compat to
  pull from correct module
* simplified the to_string() logic of a bunch of handlers
  to reduce unicode<->byte transitions

added compat.unicode imports in a number of places

2011-12-06T21:08:52+00:00

this distinguishes the types, so that for isinstance() tests...

* 'unicode' always means the unicode type
* 'bytes' always means the bytes type
* 'str' always means the native string type

added get_method_function() to alias meth.im_func / meth.func

2011-12-06T18:09:13+00:00

added django 0.9 support to passlib.ext.django & tests (such as may be found on GAE)

2011-09-20T01:22:14+00:00

improvements to passlib.ext.django

2011-09-14T18:42:39+00:00

even though it hasn't been officially documented,
some people are using it, so...

major
-----
* DEFAULT_CTX now uses SHA512-Crypt instead of PBKDF2-HMAC-SHA256,
  this should be natively supported on a larger number of platforms.

* added full unittest suite for passlib.ext.django:
  	- checks monkeypatch implementation
	- checks full plugin behavior
	- STOCK_CTX is compared against official Django behavior

minor
-----
* ``set_django_password_context()`` now patches ``django.contrib.auth.models.check_password()``
  as well as User methods.

* now exposes active context as ``User.password_context`` when patch is enabled.

* replacement ``User.check_password`` now handles None and unusable passwords explicitly,
  even if context doesn't include support for django_disabled.