summaryrefslogtreecommitdiff
path: root/lib/authentication.rb
AgeCommit message (Collapse)Author
46 hoursImplement transparent password hash migrationerdgeist
Add has_secure_password and bcrypt while retaining compatibility with legacy SHA-1 password hashes. Existing users are upgraded to password_digest on their next successful login. Add regression tests covering both legacy and modern authentication paths.
48 hoursUse SecureRandom instead of the hand rolled implementationerdgeist
2009-02-15* initial commit of the stripped restful-authenticationsimon
* http basic auth and login from cookie have been removed * no it does not work yet, it's so f*cking secure, it won't even let legitimate users login