1
# Copyright (C) 2012 by the Free Software Foundation, Inc.
3
# This file is part of GNU Mailman.
5
# GNU Mailman is free software: you can redistribute it and/or modify it under
6
# the terms of the GNU General Public License as published by the Free
7
# Software Foundation, either version 3 of the License, or (at your option)
10
# GNU Mailman is distributed in the hope that it will be useful, but WITHOUT
11
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
12
# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
15
# You should have received a copy of the GNU General Public License along with
16
# GNU Mailman. If not, see <http://www.gnu.org/licenses/>.
18
"""A wrapper around passlib."""
20
from __future__ import absolute_import, print_function, unicode_literals
31
from passlib.registry import get_crypt_handler
33
from mailman.config import config
34
from mailman.testing import layers
35
from mailman.utilities.modules import find_name
37
SCHEME_RE = r'{(?P<scheme>[^}]+?)}(?P<rest>.*)'.encode()
42
hasher = find_name(config.passwords.password_scheme)
43
# For reproducibility, don't use any salt in the test suite.
45
if layers.is_testing and 'salt' in hasher.setting_kwds:
47
hashed = hasher.encrypt(secret, **kws)
48
return b'{{{0}}}{1}'.format(hasher.name, hashed)
51
def verify(hashed, password):
52
mo = re.match(SCHEME_RE, hashed, re.IGNORECASE)
55
scheme, secret = mo.groups(('scheme', 'rest'))
56
hasher = get_crypt_handler(scheme)
57
return hasher.verify(password, secret)
added
removed
src/mailman/utilities/passwords.py
