password 3.1.0.1 → 3.1.0.2
raw patch · 7 files changed
+45/−3 lines, 7 filesdep ~template-haskell
Dependency ranges changed: template-haskell
Files
- ChangeLog.md +4/−0
- README.md +3/−1
- password.cabal +2/−2
- src/Data/Password/Argon2.hs +9/−0
- src/Data/Password/Bcrypt.hs +9/−0
- src/Data/Password/PBKDF2.hs +9/−0
- src/Data/Password/Scrypt.hs +9/−0
ChangeLog.md view
@@ -1,5 +1,9 @@ # Changelog for `password` +## 3.1.0.2++- Added reference to [password-cli](https://github.com/cdepillabout/password/tree/master/password-cli) package in modules and README.+ ## 3.1.0.1 - Redo the conditionals in the `password.cabal` file so that the scrypt
README.md view
@@ -8,7 +8,7 @@ This library provides functions for working with passwords and password hashes in Haskell. -Currently supports the following algorithms:+It currently supports the following algorithms: * `PBKDF2` * `bcrypt`@@ -17,3 +17,5 @@ Also, see the [password-instances](https://hackage.haskell.org/package/password-instances) package for instances for common typeclasses.++To quickly test and use `password`, you can use [password-cli](https://github.com/cdepillabout/password/tree/master/password-cli).
password.cabal view
@@ -1,7 +1,7 @@ cabal-version: 1.12 name: password-version: 3.1.0.1+version: 3.1.0.2 category: Data synopsis: Hashing and checking of passwords description:@@ -115,7 +115,7 @@ , bytestring >= 0.9 && < 0.13 , memory < 1 , password-types < 2- , template-haskell+ , template-haskell >= 2.2 && < 3 , text >= 1.2.2 && < 3 ghc-options: -Wall
src/Data/Password/Argon2.hs view
@@ -33,6 +33,15 @@ It is, however, recommended over @'Data.Password.Scrypt.Scrypt'@ most of the time, and it also seems like it might become the go-to password algorithm if no vulnarabilities are discovered within the next couple of years.++== Testing++You can use [password-cli](https://github.com/cdepillabout/password/tree/master/password-cli) to test it:++> $ password-cli check argon2 --hash 'SOME-HASH'++> $ password-cli hash argon2 --password-file password.txt+ -} -- I think the portability is broadened to
src/Data/Password/Bcrypt.hs view
@@ -42,6 +42,15 @@ because of the 1 character-long "$2$" version prefix, @bcrypt@ has had a version increase shortly after release, turning the prefix into a 2 character-long one like "$2a$" pretty much from the very beginning.++== Testing++You can use [password-cli](https://github.com/cdepillabout/password/tree/master/password-cli) to test it:++> $ password-cli check bcrypt --hash 'SOME-HASH'++> $ password-cli hash bcrypt --password-file password.txt+ -} module Data.Password.Bcrypt (
src/Data/Password/PBKDF2.hs view
@@ -35,6 +35,15 @@ would probably be the safest option, as it has no memory cost which could become a problem if not properly calibrated to the machine doing the password verifications.++== Testing++You can use [password-cli](https://github.com/cdepillabout/password/tree/master/password-cli) to test it:++> $ password-cli check pbkdf2 --hash 'SOME-HASH'++> $ password-cli hash pbkdf2 --password-file password.txt+ -} module Data.Password.PBKDF2 (
src/Data/Password/Scrypt.hs view
@@ -30,6 +30,15 @@ Because of the memory cost, it is generally advised to use @'Data.Password.Bcrypt.Bcrypt'@ if you're not sure this might be a problem on your system.++== Testing++You can use [password-cli](https://github.com/cdepillabout/password/tree/master/password-cli) to test it:++> $ password-cli check scrypt --hash 'SOME-HASH'++> $ password-cli hash scrypt --password-file password.txt+ -} module Data.Password.Scrypt (